CVE-2024-6670

CWE-89SQL Injection11 documents9 sources
9.8
CVSS
CRITICAL
EPSS94.5%(100th)
CISA KEVPublic ExploitExploited in WildRansomware Use
CISA Required Action: Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages1 packages

In WhatsUp Gold versions released before 2024.0.0, a SQL Injection vulnerability allows an unauthenticated attacker to retrieve the users encrypted password.
NVDMITRE

🔴Vulnerability Details

2
CVEList
WhatsUp Gold HasErrors SQL Injection Authentication Bypass Vulnerability2024-08-29
VulnCheck
Progress WhatsUp Gold SQL Injection Vulnerability2024

💥Exploits & PoCs

2
Metasploit
WhatsUp Gold SQL Injection (CVE-2024-6670)
Nuclei
WhatsUp Gold HasErrors SQL Injection - Authentication Bypass

🔍Detection Rules

2
Suricata
ET WEB_SPECIFIC_APPS Progress WhatsUp Gold Pre-Auth Password Encrypt Primitive (CVE-2024-6670)2024-09-19
Suricata
ET WEB_SPECIFIC_APPS Progress WhatsUp Gold HasErrors SQL Injection Authentication Bypass (CVE-2024-6670)2024-09-19

📋Vendor Advisories

1
CISA
Progress WhatsUp Gold SQL Injection Vulnerability2024-09-16

🕵️Threat Intelligence

3
Trendmicro
Protecting Against RCE Attacks Abusing WhatsUp Gold Vulnerabilities2024-09-12
Bleepingcomputer
Hackers targeting WhatsUp Gold with public exploit since August2024-09-12
Trendmicro
Protecting Against RCE Attacks Abusing WhatsUp Gold Vulnerabilities2024-09-12