CVE-2022-29846

CVE Database · CVE-2022-29846

CVE-2022-29846

· MEDIUMModified

CVSS v3.1

5.3

EPSS

5.13%

Published

May 11, 2022

Modified

Nov 21, 2024

Public PoC / Exploit (1)

All weaponized →

TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

In Progress Ipswitch WhatsUp Gold 16.1 through 21.1.1, and 22.0.0, it is possible for an unauthenticated attacker to obtain the WhatsUp Gold installation serial number.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Affected Products (2)

progress · whatsup_goldvulnerable

References (4)

https://community.progress.com/s/article/WhatsUp-Gold-Critical-Product-Alert-May-2022

Vendor Advisory

https://www.progress.com/network-monitoring

Product

https://community.progress.com/s/article/WhatsUp-Gold-Critical-Product-Alert-May-2022

Vendor Advisory

https://www.progress.com/network-monitoring

Product

KEV Catalog EPSS Scores Vendors All CVEs