Описание
In WhatsUp Gold versions released before 2023.1.3, there is a missing authentication vulnerability in WUGDataAccess.Credentials. This vulnerability allows unauthenticated attackers to disclose Windows Credentials stored in the product Credential Library.
Уязвимые конфигурации
Конфигурация 1Версия до 23.1.3 (исключая)
cpe:2.3:a:progress:whatsup_gold:*:*:*:*:*:*:*:*
EPSS
Процентиль: 76%
0.00944
Низкий
8.6 High
CVSS3
Дефекты
CWE-287
CWE-287
Связанные уязвимости
CVSS3: 8.6
github
больше 1 года назад
In WhatsUp Gold versions released before 2023.1.3, there is a missing authentication vulnerability in WUGDataAccess.Credentials. This vulnerability allows unauthenticated attackers to disclose Windows Credentials stored in the product Credential Library.
EPSS
Процентиль: 76%
0.00944
Низкий
8.6 High
CVSS3
Дефекты
CWE-287
CWE-287