Security Advisory

CVE-2024-6671

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-08-29 22:06:19

Last updated 2024-09-25 03:55:41

Assigner ProgressSoftware

State PUBLISHED

Description

In WhatsUp Gold versions released before 2024.0.0, if the application is configured with only a single user, a SQL Injection vulnerability allows an unauthenticated attacker to retrieve the users encrypted password.

← Browse all CVEs View on cve.org ↗