In WhatsUp Gold versions released before 2023.1.3, an uncontrolled resource consumption vulnerability exists. A specially crafted unauthenticated HTTP request to the TestController Chart functionality can lead to denial of service.
History

Mon, 02 Dec 2024 16:15:00 +0000

Type Values Removed Values Added
CPEs cpe:2.3:a:progress:whatsup_gold:-:*:*:*:*:*:*:*
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'poc', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


Fri, 06 Sep 2024 23:00:00 +0000

Type Values Removed Values Added
First Time appeared Progress
Progress whatsup Gold
CPEs cpe:2.3:a:progress:whatsup_gold:*:*:*:*:*:*:*:*
Vendors & Products Progress
Progress whatsup Gold

cve-icon MITRE

Status: PUBLISHED

Assigner: ProgressSoftware

Published: 2024-06-25T20:01:47.996Z

Updated: 2024-12-02T15:16:37.333Z

Reserved: 2024-05-16T15:59:52.081Z

Link: CVE-2024-5011

cve-icon Vulnrichment

Updated: 2024-08-01T20:55:10.395Z

cve-icon NVD

Status : Modified

Published: 2024-06-25T20:15:13.810

Modified: 2024-11-21T09:46:46.640

Link: CVE-2024-5011

cve-icon Redhat

No data.