Skip to main content

CSA will never ask you to transfer money or disclose banking details. Stay vigilant.

If unsure, call the 24/7 ScamShield Helpline at 1799 to check. www.scamshield.gov.sg

Cyber Security Agency of Singapore
  1. Home
  2. Alerts & Advisories
  3. Alerts
  4. Critical Vulnerabilities in WhatsUp Gold
Alerts

Critical Vulnerabilities in WhatsUp Gold

2 September 2024

Progress has released security updates to address two critical vulnerabilities (CVE-2024-6670, CVE-2024-6671) in WhatsUp Gold, a network monitoring application. Both vulnerabilities have a Common Vulnerability Scoring System (CVSSv3.1) score of 9.8 out of 10.

Successful exploitation of the Structured Query Language (SQL) injection vulnerabilities would allow an unauthenticated attacker to retrieve the user's encrypted password.

This vulnerability affects Progress WhatsUp Gold versions prior to 2024.0.0.

Users and administrators of affected product versions are advised to update to the latest version immediately. 

More information is available here:

https://community.progress.com/s/article/WhatsUp-Gold-Security-Bulletin-August-2024

Back to top