CVE-2025-2572

Опубликовано: 14 апр. 2025

Источник: nvd

CVSS3: 5.6

CVSS3: 5.3

EPSS Низкий

Описание

In WhatsUp Gold versions released before 2024.0.3, a

database manipulation

vulnerability allows an unauthenticated attacker to modify the contents of WhatsUp.dbo.WrlsMacAddressGroup.

Ссылки

https://docs.progress.com/bundle/whatsupgold-release-notes-24-0/page/WhatsUp-Gold-2024.0-Release-Notes.html
Release Notes
https://www.progress.com/network-monitoring
Product

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:progress:whatsup_gold:*:*:*:*:*:*:*:*

Версия до 24.0.3 (исключая)

EPSS

Процентиль: 1%

0.00011

Низкий

5.6 Medium

CVSS3

5.3 Medium

CVSS3

Дефекты

CWE-287

Связанные уязвимости

GHSA-4r38-2fwm-9vj5

CVSS3: 5.6

github

10 месяцев назад

In WhatsUp Gold versions released before 2024.0.3, a database manipulation vulnerability allows an unauthenticated attacker to modify the contents of WhatsUp.dbo.WrlsMacAddressGroup.

EPSS

Процентиль: 1%

0.00011

Низкий

5.6 Medium

CVSS3

5.3 Medium

CVSS3

Дефекты

CWE-287