GHSA-4r38-2fwm-9vj5

Опубликовано: 14 апр. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 5.6

Описание

In WhatsUp Gold versions released before 2024.0.3, a

database manipulation

vulnerability allows an unauthenticated attacker to modify the contents of WhatsUp.dbo.WrlsMacAddressGroup.

In WhatsUp Gold versions released before 2024.0.3, a

database manipulation

vulnerability allows an unauthenticated attacker to modify the contents of WhatsUp.dbo.WrlsMacAddressGroup.

Ссылки

https://nvd.nist.gov/vuln/detail/CVE-2025-2572
https://docs.progress.com/bundle/whatsupgold-release-notes-24-0/page/WhatsUp-Gold-2024.0-Release-Notes.html
https://www.progress.com/network-monitoring

EPSS

Процентиль: 1%

0.00011

Низкий

5.6 Medium

CVSS3

CVE ID

CVE-2025-2572

Дефекты

CWE-287

Связанные уязвимости

CVE-2025-2572

CVSS3: 5.6

nvd

10 месяцев назад

In WhatsUp Gold versions released before 2024.0.3, a database manipulation vulnerability allows an unauthenticated attacker to modify the contents of WhatsUp.dbo.WrlsMacAddressGroup.

EPSS

Процентиль: 1%

0.00011

Низкий

5.6 Medium

CVSS3

CVE ID

CVE-2025-2572

Дефекты

CWE-287