{
    "file_item": {
        "filepath": "security-advisories",
        "filename": "CERT-EU-SA2024-105.pdf"
    },
    "title": "Multiple Vulnerabilities in WhatsUp Gold",
    "serial_number": "2024-105",
    "publish_date": "30-09-2024 07:50:00",
    "description": "On September 24, 2024, the WhatsUp Gold team released a security advisory addressing six vulnerabilities of various severities, the most critical reaching the score of 9.8 out of 10.<br>\n",
    "url_title": "2024-105",
    "content_markdown": "---\ntitle: 'Multiple Vulnerabilities in\u00a0WhatsUp\u00a0Gold'\nnumber: '2024-105'\nversion: '1.0'\noriginal_date: 'September 24, 2024'\ndate: 'September 27, 2024'\n---\n\n_History:_\n\n* _27/09/2024 --- v1.0 -- Initial publication_\n\n# Summary\n\nOn September 24, 2024, the WhatsUp Gold team released a security advisory addressing six vulnerabilities of various severities, the most critical reaching the score of 9.8 out of 10 [1].\n\n# Technical Details\n\nNo technical details have been release at this time, but the following vulnerabilities have been listed by the WhatsUp Gold team in their security bulletin [1]:\n\n- **CVE-2024-46905**: CVSS 8.8/10 (reported by Sina Kheirkhah)\n- **CVE-2024-46906**: CVSS 8.8/10 (reported by Sina Kheirkhah)\n- **CVE-2024-46907**: CVSS 8.8/10 (reported by Sina Kheirkhah)\n- **CVE-2024-46908**: CVSS 8.8/10 (reported by Sina Kheirkhah)\n- **CVE-2024-46909**: CVSS 9.8/10 (reported by Andy Niu)\n- **CVE-2024-8785**: CVSS 9.8/10 (reported by Tenable)\n\n# Affected Products\n\nAll WhatsUp Gold versions below 24.0.1.\n\n# Recommendations\n\nCERT-EU strongly recommends updating affected devices as soon as possible [1].\n\n# References\n\n[1] <https://community.progress.com/s/article/WhatsUp-Gold-Security-Bulletin-September-2024>\n",
    "content_html": "<p><em>History:</em></p><ul><li><em>27/09/2024 --- v1.0 -- Initial publication</em></li></ul><h2 id=\"summary\">Summary</h2><p>On September 24, 2024, the WhatsUp Gold team released a security advisory addressing six vulnerabilities of various severities, the most critical reaching the score of 9.8 out of 10 [1].</p><h2 id=\"technical-details\">Technical Details</h2><p>No technical details have been release at this time, but the following vulnerabilities have been listed by the WhatsUp Gold team in their security bulletin [1]:</p><ul><li><strong>CVE-2024-46905</strong>: CVSS 8.8/10 (reported by Sina Kheirkhah)</li><li><strong>CVE-2024-46906</strong>: CVSS 8.8/10 (reported by Sina Kheirkhah)</li><li><strong>CVE-2024-46907</strong>: CVSS 8.8/10 (reported by Sina Kheirkhah)</li><li><strong>CVE-2024-46908</strong>: CVSS 8.8/10 (reported by Sina Kheirkhah)</li><li><strong>CVE-2024-46909</strong>: CVSS 9.8/10 (reported by Andy Niu)</li><li><strong>CVE-2024-8785</strong>: CVSS 9.8/10 (reported by Tenable)</li></ul><h2 id=\"affected-products\">Affected Products</h2><p>All WhatsUp Gold versions below 24.0.1.</p><h2 id=\"recommendations\">Recommendations</h2><p>CERT-EU strongly recommends updating affected devices as soon as possible [1].</p><h2 id=\"references\">References</h2><p>[1] <a rel=\"noopener\" target=\"_blank\" href=\"https://community.progress.com/s/article/WhatsUp-Gold-Security-Bulletin-September-2024\">https://community.progress.com/s/article/WhatsUp-Gold-Security-Bulletin-September-2024</a></p>",
    "licence": {
        "title": "Creative Commons Attribution 4.0 International (CC-BY 4.0)",
        "link": "https://creativecommons.org/licenses/by/4.0/",
        "restrictions": "https://cert.europa.eu/legal-notice",
        "author": "The Cybersecurity Service for the Union institutions, bodies, offices and agencies"
    }
}