CVE-2024-5013

Опубликовано: 25 июн. 2024

Источник: nvd

CVSS3: 7.5

EPSS Низкий

Описание

In WhatsUp Gold versions released before 2023.1.3, an unauthenticated Denial of Service

vulnerability was identified. An unauthenticated attacker can put the application into the SetAdminPassword installation step, which renders the application non-accessible.

Ссылки

https://community.progress.com/s/article/WhatsUp-Gold-Security-Bulletin-June-2024
Vendor Advisory
https://www.progress.com/network-monitoring
Product
https://community.progress.com/s/article/WhatsUp-Gold-Security-Bulletin-June-2024
Vendor Advisory
https://www.progress.com/network-monitoring
Product

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:progress:whatsup_gold:*:*:*:*:*:*:*:*

Версия до 23.1.3 (исключая)

EPSS

Процентиль: 80%

0.01394

Низкий

7.5 High

CVSS3

Дефекты

CWE-400

NVD-CWE-noinfo

Связанные уязвимости

GHSA-vp43-wpfx-v79m