CVE-2024-6670

Confirmed PUBLISHED

WhatsUp Gold HasErrors SQL Injection Authentication Bypass Vulnerability

Progress Software Corporation · WhatsUp Gold
Exploited in the wild Used in malware PoC available

Recommended Action

Prioritize remediation. Validate affected assets and apply vendor fixes on an accelerated timeline.

Confidence
Confirmed
Exploitation Status
Exploited in the wild
Observed in Sensors
No
Attempts (30d)
Unique Attacker IPs
CISA KEV
In CISA KEV
CVSS / EPSS
9.8 Critical EPSS 94.7%

At a Glance

In WhatsUp Gold versions released before 2024.0.0, a SQL Injection vulnerability allows an unauthenticated attacker to retrieve the users encrypted password.

cisa nuclei_scanner nessus_scanner ransomware malware
CVE Published
Aug 29, 2024
Exploitation Reported
Sep 16, 2024
CVSS
9.8 Critical
EPSS
94.7%
Remote Low complexity No user interaction Unauthenticated

Affected Versions

Vendor Product Version Status
progress
whatsupgold

2023.1.0 to < 2024.0.0

Affected
Progress Software Corporation
WhatsUp Gold

2023.1.0 to < 2024.0.0

Affected

CVE References

Recommended Actions

  • Prioritize remediation. Validate affected assets and apply vendor fixes on an accelerated timeline.
  • Check enrichment artifacts for scanner coverage and available PoCs before rolling remediation validation.
  • Use the Pro API to automate enrichment, telemetry, and workflow delivery for VM, SOC, and CTI pipelines.