CVE-2024-5013

In WhatsUp Gold versions released before 2023.1.3, an unauthenticated Denial of Service vulnerability was identified. An unauthenticated attacker can put the application into the SetAdminPassword installation step, which renders the application non-accessible.
Configurations

Configuration 1 (hide)

cpe:2.3:a:progress:whatsup_gold:*:*:*:*:*:*:*:*

History

21 Nov 2024, 09:46

Type Values Removed Values Added
References () https://community.progress.com/s/article/WhatsUp-Gold-Security-Bulletin-June-2024 - Vendor Advisory () https://community.progress.com/s/article/WhatsUp-Gold-Security-Bulletin-June-2024 - Vendor Advisory
References () https://www.progress.com/network-monitoring - Product () https://www.progress.com/network-monitoring - Product

21 Aug 2024, 13:35

Type Values Removed Values Added
First Time Progress
Progress whatsup Gold
CWE NVD-CWE-noinfo
CPE cpe:2.3:a:progress:whatsup_gold:*:*:*:*:*:*:*:*
References () https://community.progress.com/s/article/WhatsUp-Gold-Security-Bulletin-June-2024 - () https://community.progress.com/s/article/WhatsUp-Gold-Security-Bulletin-June-2024 - Vendor Advisory
References () https://www.progress.com/network-monitoring - () https://www.progress.com/network-monitoring - Product

26 Jun 2024, 12:44

Type Values Removed Values Added
Summary
  • (es) En las versiones de WhatsUp Gold lanzadas antes de 2023.1.3, se identificó una vulnerabilidad de denegación de servicio no autenticada. Un atacante no autenticado puede colocar la aplicación en el paso de instalación SetAdminPassword, lo que hace que la aplicación no sea accesible.

25 Jun 2024, 21:16

Type Values Removed Values Added
New CVE

Information

Published : 2024-06-25 21:16

Updated : 2024-11-21 09:46


NVD link : CVE-2024-5013

Mitre link : CVE-2024-5013

CVE.ORG link : CVE-2024-5013


JSON object : View

Products Affected

progress

  • whatsup_gold
CWE
CWE-400

Uncontrolled Resource Consumption

NVD-CWE-noinfo