In WhatsUp Gold versions released before 2023.1.3, an unauthenticated Remote Code Execution vulnerability in Progress WhatsUpGold. The
WhatsUp.ExportUtilities.Export.GetFileWithoutZip
allows execution of commands with iisapppool\nmconsole privileges.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: ProgressSoftware
Published: 2024-06-25T19:48:15.268Z
Updated: 2024-07-10T03:55:15.041Z
Reserved: 2024-05-14T18:28:11.852Z
Link: CVE-2024-4885
JSON object: View
NVD Information
Status : Awaiting Analysis
Published: 2024-06-25T20:15:12.970
Modified: 2024-06-26T12:44:29.693
Link: CVE-2024-4885
JSON object: View
Redhat Information
No data.
CWE