THREAT OPS › CVEs › CVE-2024-6670
CVE-2024-6670 — Progress WhatsUp Gold SQL Injection Vulnerability
Progress WhatsUp Gold contains a SQL injection vulnerability that allows an unauthenticated attacker to retrieve the user's encrypted password if the application is configured with only a single user.
Vulnerability details
- Affected productsWhatsUp Gold
- KEV remediation due2024-10-07