In WhatsUp Gold versions released before 2023.1, an API endpoint was found to be missing an authentication mechanism. It is possible for an unauthenticated attacker to enumerate information related to a registered device being monitored by WhatsUp Gold.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: ProgressSoftware
Published: 2023-12-14T16:06:29.101Z
Updated: 2024-08-02T08:28:21.781Z
Reserved: 2023-11-28T16:03:22.473Z
Link: CVE-2023-6368
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2023-12-14T16:15:54.103
Modified: 2023-12-19T17:48:19.703
Link: CVE-2023-6368
Redhat
No data.