← back
CVE-2022-29848

CVE-2022-29848

EPSS 3.5%
In Progress Ipswitch WhatsUp Gold 17.0.0 through 21.1.1, and 22.0.0, it is possible for an authenticated user to invoke an API transaction that would allow them to read sensitive operating-system attributes from a host that is accessible by the WhatsUp Gold system.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://community.progress.com/s/article/WhatsUp-Gold-Critical-Product-Alert-May-2022https://www.progress.com/network-monitoring