Security Advisory

CVE-2024-5019

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-06-25 20:29:00

Last updated 2024-08-01 20:55:10

Assigner ProgressSoftware

State PUBLISHED

Description

In WhatsUp Gold versions released before 2023.1.3, an unauthenticated Arbitrary File Read issue exists in Wug.UI.Areas.Wug.Controllers.SessionController.CachedCSS. This vulnerability allows reading of any file with iisapppoolNmConsole privileges.

← Browse all CVEs View on cve.org ↗