In WhatsUp Gold versions released before 2023.1.2 , a blind SSRF vulnerability exists in Whatsup Gold's FaviconController that allows an attacker to send arbitrary HTTP requests on behalf of the vulnerable server.
History

Mon, 09 Dec 2024 14:00:00 +0000

Type Values Removed Values Added
First Time appeared Progress
Progress whatsup Gold
CPEs cpe:2.3:a:progress:whatsup_gold:*:*:*:*:*:*:*:*
Vendors & Products Progress
Progress whatsup Gold

cve-icon MITRE

Status: PUBLISHED

Assigner: ProgressSoftware

Published: 2024-05-14T20:35:17.382Z

Updated: 2024-08-01T20:47:41.190Z

Reserved: 2024-05-06T18:59:19.515Z

Link: CVE-2024-4561

cve-icon Vulnrichment

Updated: 2024-08-01T20:47:41.190Z

cve-icon NVD

Status : Analyzed

Published: 2024-05-14T21:15:13.010

Modified: 2024-12-09T13:31:41.683

Link: CVE-2024-4561

cve-icon Redhat

No data.