CVE-2024-8785
published 2024-12-02CVE-2024-8785: In WhatsUp Gold versions released before 2024.0.1, a remote unauthenticated attacker could leverage NmAPI.exe to create or change an existing registry value in…
PriorityP339medium5.3CVSS 3.1
AVNACLPRNUINSUCNILAN
EPSS
9.50%
94.8th percentile
In WhatsUp Gold versions released before 2024.0.1, a remote unauthenticated attacker could leverage NmAPI.exe to create or change an existing registry value in registry path HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Ipswitch\.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| progress | whatsup_gold | < 24.0.1 | 24.0.1 |
| progress_software_corporation | whatsup_gold | >= 2023.1.0 < 2024.0.1 | 2024.0.1 |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No public exploits indexed.
Checkpoint
9th December – Threat Intelligence Report
blogs_checkpoint·2024-12-09
CVE-2024-8785 9th December – Threat Intelligence Report
Latest Publications
CPR Podcast Channel
AI Research
Web 3.0 Security
Intelligence Reports
ThreatCloud AI
Threat Intelligence & Research
Zero Day Protection
Sandblast File Analysis
About Us
SUBSCRIBE
2026
2025
2024
2023
2022
2021
2020
2019
2018
2017
2016
## 9th December – Threat Intelligence Report
For the latest discoveries in cyber research for the week of 9th December, please download our Threat Intelligence Bulletin .
TOP ATTACKS AND BREACHES
Romania’s Constitutional Court annulled the first round of its presidential election after declassified intelligence revealed Russian interference favoring right wing candidate Călin Georgescu. The interference involved a sophisticated social media campaign on TikTok, with $381,000 spent to promote Georgescu without prope
Bleepingcomputer
Exploit released for critical WhatsUp Gold RCE flaw, patch now
blogs_bleepingcomputer·2024-12-03·CVSS 9.8
CVE-2024-8785 [CRITICAL] Exploit released for critical WhatsUp Gold RCE flaw, patch now
## Exploit released for critical WhatsUp Gold RCE flaw, patch now
## Bill Toulas
A proof-of-concept (PoC) exploit for a critical-severity remote code execution flaw in Progress WhatsUp Gold has been published, making it critical to install the latest security updates as soon as possible.
The flaw is tracked as CVE-2024-8785 (CVSS v3.1 score: 9.8) and was discovered by Tenable in mid-August 2024. It exists in the NmAPI.exe process in WhatsUp Gold versions from 2023.1.0 and before 24.0.1.
## Manipulating the Windows Registry
When launched, NmAPI.exe provides a network management API interface for WhatsUp Gold, listening for and processing incoming requests.
Due to insufficient validation of incoming data, attackers could send specially crafted requests to modify or overwrite sensitive
Bleepingcomputer
Progress urges admins to patch critical WhatsUp Gold bugs ASAP
blogs_bleepingcomputer·2024-09-27·CVSS 8.8
[HIGH] Progress urges admins to patch critical WhatsUp Gold bugs ASAP
## Progress urges admins to patch critical WhatsUp Gold bugs ASAP
## Sergiu Gatlan
Progress Software warned customers to patch multiple critical and high-severity vulnerabilities in its WhatsUp Gold network monitoring tool as soon as possible.
However, even though it released WhatsUp Gold 24.0.1, which addressed the issues last Friday and published an advisory on Tuesday, the company has yet to provide any details regarding these flaws.
"The WhatsUp Gold team has identified six vulnerabilities that exist in versions below 24.0.1," Progress warned customers this week.
"We are reaching out to all WhatsUp Gold customers to upgrade their environment as soon as possible to version 24.0.1, released on Friday, September 20. If you are running a version older than 24.0.1 and you do not upgrad
2024-12-02
Published