Progress Software has patched six critical vulnerabilities affecting its popular network monitoring application, WhatsUp Gold that pose significant risks, potentially allowing unauthorized access and control over network infrastructure.
The six vulnerabilities affect all versions of WhatsUp Gold below 24.0.1 and mentioned below.
- CVE-2024-46909 with a CVSS of 9.8
- CVE-2024-8785 with a CVSS of 9.8
- CVE-2024-46908 with a CVSS of 8.8
- CVE-2024-46907 with a CVSS of 8.8
- CVE-2024-46906 with a CVSS of 8.8
- CVE-2024-46905 with a CVSS of 8.8
The detail about these vulnerabilities is currently restricted to prevent exploitation. . Recently disclosed vulnerabilities, such as CVE-2024-4885, CVE-2024-6670 and CVE-2024-6671, have been in the limelight and made WhatsUp Gold in to spotlight.
Progress Software is proactively reaching out to all WhatsUp Gold customers, urging them to upgrade their environments to the newly released version 24.0.1, which addresses all six vulnerabilities.
