Lucene search
Hitomi KimuraTRENDMICROBLOG:2B07E5FD3D7E822BA617CED981306986HistorySep 12, 2024 - 12:00 a.m.
Protecting Against RCE Attacks Abusing WhatsUp Gold Vulnerabilities
2024-09-1200:00:00
Hitomi Kimura
www.trendmicro.com
3
rce
whatsup gold
vulnerabilities
progress software
cve-2024-6670
cve-2024-6671
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
8.4
Confidence
Low
EPSS
0.956
Percentile
99.5%
In this blog entry, we provide an analysis of the recent remote code execution attacks related to Progress Software’s WhatsUp Gold that possibly abused the vulnerabilities CVE-2024-6670 and CVE-2024-6671.
Related
nessus
nessus
Progress WhatsUp Gold < 24.0.0 Multiple Vulnerabilities (000263015)
2024-08-27 00:00:00
thn
thn
nvd
nvd
CVE-2024-6670
2024-08-29 22:15:05
CVE-2024-6671
2024-08-29 22:15:05
cve
cve
CVE-2024-6670
2024-08-29 22:15:05
CVE-2024-6671
2024-08-29 22:15:05
cisa_kev
cisa_kev
Progress WhatsUp Gold SQL Injection Vulnerability
2024-09-16 00:00:00
vulnrichment
vulnrichment
cvelist
cvelist
githubexploit
githubexploit
Exploit for SQL Injection in Progress Whatsup Gold
2024-08-30 17:13:14
attackerkb
attackerkb
CVE-2024-6670
2024-08-29 00:00:00
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
8.4
Confidence
Low
EPSS
0.956
Percentile
99.5%
Related for TRENDMICROBLOG:2B07E5FD3D7E822BA617CED981306986