9.8
CRITICAL
CVE-2024-8785
Description

In WhatsUp Gold versions released before 2024.0.1, a remote unauthenticated attacker could leverage NmAPI.exe to create or change an existing registry value in registry path HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Ipswitch\.

INFO

Published Date :

Dec. 2, 2024, 3:15 p.m.

Last Modified :

Dec. 9, 2024, 8:25 p.m.

Source :

[email protected]

Remotely Exploitable :

Yes !

Impact Score :

5.9

Exploitability Score :

3.9
Public PoC/Exploit Available at Github

CVE-2024-8785 has a 1 public PoC/Exploit available at Github. Go to the Public Exploits tab to see the list.

Affected Products

The following products are affected by CVE-2024-8785 vulnerability. Even if cvefeed.io is aware of the exact versions of the products that are affected, the information is not represented in the table below.

ID Vendor Product Action
1 Progress whatsup_gold
: Total Affected Vendor : 1 | Products : 1
References to Advisories, Solutions, and Tools

Here, you will find a curated list of external links that provide in-depth information, practical solutions, and valuable tools related to CVE-2024-8785.

URL Resource
https://community.progress.com/s/article/WhatsUp-Gold-Security-Bulletin-September-2024 Vendor Advisory
https://docs.progress.com/bundle/whatsupgold-release-notes-24-0/page/WhatsUp-Gold-2024.0-Release-Notes.html Release Notes
https://www.progress.com/network-monitoring Product

We scan GitHub repositories to detect new proof-of-concept exploits. Following list is a collection of public exploits and proof-of-concepts, which have been published on GitHub (sorted by the most recently updated).

Profile Photo
securitycipher/daily-bugbounty-writeups

This repository contains Bug Bounty writeups

bug-bounty bugbounty cybersecurity penetration-testing pentesting security security-tools technology writeups securitycipher

Updated: 2 weeks ago
31 stars 3 fork 3 watcher
Born at : Oct. 30, 2023, 10:40 p.m. This repo has been linked 1 different CVEs too.

Results are limited to the first 15 repositories due to potential performance issues.

The following list is the news that have been mention CVE-2024-8785 vulnerability anywhere in the article.

  • Cybersecurity News
CVE-2024-12254: CPython Flaw Could Lead to Memory Exhaustion in asyncio Applications

A high-severity vulnerability (CVE-2024-12254) has been discovered in CPython, the reference implementation of the Python programming language. This vulnerability, with a CVSSv4 score of 8.7, affects ... Read more

Published Date: Dec 10, 2024 (1 week, 3 days ago)
CVE-2024-12254 CVE-2024-8785 CVE-2024-52940 CVE-2024-10218 CVE-2024-10217 CVE-2024-50330 CVE-2024-7763 CVE-2020-1472
  • Help Net Security
Week in review: Veeam Service Provider Console flaws fixed, Patch Tuesday forecast

Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: Veeam plugs serious holes in Service Provider Console (CVE-2024-42448, CVE-2024-42449) Veeam has fixed ... Read more

Published Date: Dec 08, 2024 (1 week, 4 days ago)
CVE-2024-12356 CVE-2024-42448 CVE-2024-42449 CVE-2024-8785 CVE-2024-41713
  • Cybersecurity News
CVE-2024-43222 (CVSS 9.8): Critical Flaw in Sweet Date WordPress Theme Exposes Thousands of Sites to Potential Takeovers

A critical vulnerability (CVE-2024-43222) has been identified in the Sweet Date WordPress theme, a popular premium theme with nearly 10,000 sales. This vulnerability carries a CVSS score of 9.8, indic ... Read more

Published Date: Dec 06, 2024 (1 week, 6 days ago)
CVE-2024-43222 CVE-2024-8785 CVE-2024-10905 CVE-2024-10781 CVE-2024-10542 CVE-2024-9511 CVE-2024-52940 CVE-2024-10218 CVE-2024-10217 CVE-2024-50330 ...+2 more CVE
  • TheCyberThrone
CISA Adds CyberPanel Flaw CVE-2024-51378 to KEV Catalog

The CISA has warned about a critical vulnerability in CyberPanel tracked as CVE-2024-51378, is being actively exploited by attackers to deploy ransomware and added to the known exploited vulnerability ... Read more

Published Date: Dec 05, 2024 (2 weeks ago)
CVE-2024-54677 CVE-2024-50379 CVE-2024-49112 CVE-2024-53677 CVE-2024-8785 CVE-2024-10905 CVE-2024-51378
  • TheCyberThrone
POC Exploit released for WhatsUp Gold CVE-2024-8785

Security researchers have published a proof-of-concept (PoC) exploit for CVE-2024-8785 with a CVSS score of 9.8, a critical remote code execution vulnerability affecting Progress WhatsUp Gold,A critic ... Read more

Published Date: Dec 05, 2024 (2 weeks ago)
CVE-2024-54677 CVE-2024-50379 CVE-2024-49112 CVE-2024-53677 CVE-2024-12053 CVE-2024-8785 CVE-2024-51378
  • Cybersecurity News
CVE-2024-10905 (CVSS 10): Critical Vulnerability in SailPoint IdentityIQ Exposes Sensitive Data

A critical vulnerability has been discovered in SailPoint IdentityIQ, a widely used identity and access management (IAM) platform. This flaw, tracked as CVE-2024-10905, has been assigned a CVSS score ... Read more

Published Date: Dec 05, 2024 (2 weeks ago)
CVE-2024-11053 CVE-2024-55563 CVE-2024-8785 CVE-2024-10905 CVE-2024-8929 CVE-2024-8932 CVE-2024-47533 CVE-2024-51378
  • Cybersecurity News
Exploit Code Available: Critical Flaw Found in WhatsUp Gold- CVE-2024-8785 (CVSS 9.8)

Tenable’s latest vulnerability analysis has exposed a critical flaw, CVE-2024-8785, in WhatsUp Gold versions prior to 24.0.1. Rated with a CVSS score of 9.8, this vulnerability allows unauthenticated ... Read more

Published Date: Dec 05, 2024 (2 weeks ago)
CVE-2024-8785 CVE-2024-10781 CVE-2024-10542 CVE-2024-10524 CVE-2024-7763 CVE-2024-6670 CVE-2023-40238 CVE-2023-46604
  • TheCyberThrone
Google Patches CVE-2024-12053 in Chrome

Google has released patches for a high severity vulnerability in its popular  Chrome web browser residing within the V8 JavaScript engine and allow attackers to execute arbitrary code on users’ system ... Read more

Published Date: Dec 04, 2024 (2 weeks, 1 day ago)
CVE-2024-54677 CVE-2024-50379 CVE-2024-49112 CVE-2024-42448 CVE-2024-53677 CVE-2024-12053 CVE-2024-8785
  • Help Net Security
PoC exploit for critical WhatsUp Gold RCE vulnerability released (CVE-2024-8785)

Researchers have published a proof-of-concept (PoC) exploit for CVE-2024-8785, a critical remote code execution vulnerability affecting Progress WhatsUp Gold, a popular network monitoring solution for ... Read more

Published Date: Dec 04, 2024 (2 weeks, 1 day ago)
CVE-2024-12356 CVE-2024-8785
  • BleepingComputer
Exploit released for critical WhatsUp Gold RCE flaw, patch now

A proof-of-concept (PoC) exploit for a critical-severity remote code execution flaw in Progress WhatsUp Gold has been published, making it critical to install the latest security updates as soon as po ... Read more

Published Date: Dec 03, 2024 (2 weeks, 2 days ago)
CVE-2024-8785

The following table lists the changes that have been made to the CVE-2024-8785 vulnerability over time.

Vulnerability history details can be useful for understanding the evolution of a vulnerability, and for identifying the most recent changes that may impact the vulnerability's severity, exploitability, or other characteristics.

  • Initial Analysis by [email protected]

    Dec. 09, 2024

    Action Type Old Value New Value
    Added CVSS V3.1 NIST AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
    Added CWE NIST NVD-CWE-noinfo
    Added CPE Configuration OR *cpe:2.3:a:progress:whatsup_gold:*:*:*:*:*:*:*:* versions up to (excluding) 24.0.1
    Changed Reference Type https://community.progress.com/s/article/WhatsUp-Gold-Security-Bulletin-September-2024 No Types Assigned https://community.progress.com/s/article/WhatsUp-Gold-Security-Bulletin-September-2024 Vendor Advisory
    Changed Reference Type https://docs.progress.com/bundle/whatsupgold-release-notes-24-0/page/WhatsUp-Gold-2024.0-Release-Notes.html No Types Assigned https://docs.progress.com/bundle/whatsupgold-release-notes-24-0/page/WhatsUp-Gold-2024.0-Release-Notes.html Release Notes
    Changed Reference Type https://www.progress.com/network-monitoring No Types Assigned https://www.progress.com/network-monitoring Product
  • New CVE Received by [email protected]

    Dec. 02, 2024

    Action Type Old Value New Value
    Added Description In WhatsUp Gold versions released before 2024.0.1, a remote unauthenticated attacker could leverage NmAPI.exe to create or change an existing registry value in registry path HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Ipswitch\.
    Added CVSS V3.1 AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
    Added CWE CWE-648
    Added Reference https://community.progress.com/s/article/WhatsUp-Gold-Security-Bulletin-September-2024
    Added Reference https://docs.progress.com/bundle/whatsupgold-release-notes-24-0/page/WhatsUp-Gold-2024.0-Release-Notes.html
    Added Reference https://www.progress.com/network-monitoring
EPSS is a daily estimate of the probability of exploitation activity being observed over the next 30 days. Following chart shows the EPSS score history of the vulnerability.
CWE - Common Weakness Enumeration

While CVE identifies specific instances of vulnerabilities, CWE categorizes the common flaws or weaknesses that can lead to vulnerabilities. CVE-2024-8785 is associated with the following CWEs:

Common Attack Pattern Enumeration and Classification (CAPEC)

Common Attack Pattern Enumeration and Classification (CAPEC) stores attack patterns, which are descriptions of the common attributes and approaches employed by adversaries to exploit the CVE-2024-8785 weaknesses.

CVSS31 - Vulnerability Scoring System
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
: