Exploit Released for Critical WhatsUp Gold RCE Vulnerability—Immediate Patching Required
by Justin Erickson
A proof-of-concept exploit has been released for a critical remote code execution (RCE) vulnerability in WhatsUp Gold with a CVSS score of 9.8. The flaw allows unauthenticated attackers to execute arbitrary code on vulnerable installations, posing severe risks to network management environments relying on the software. Admins are urged to apply the latest patch version 24.0.1 immediately, as publicly available exploit code significantly increases the likelihood of attacks targeting unpatched systems.
The flaw is listed as CVE-2024-8785.
Third-Party references:
Click the links below to learn more details. (Opens in a new tab/window.)