CVE-2024-4885 Information
Jun 26, 2024
cve
Description
In WhatsUp Gold versions released before 2023.1.3 an unauthenticated Remote Code Execution vulnerability in Progress WhatsUpGold. The
WhatsUp.ExportUtilities.Export.GetFileWithoutZip
allows execution of commands with iisapppool\nmconsole privileges.
Reference
https://www.progress.com/network-monitoring https://community.progress.com/s/article/WhatsUp-Gold-Security-Bulletin-June-2024
Share on: