Progress warns WhatsUp Gold has some critical security flaws, so patch now

Six high-severity and critical vulnerabilities have been addressed

News By Sead Fadilpašić published 30 September 2024

WhatsUp Gold, a network monitoring solution built by Progress Software, carried numerous critical and high-severity vulnerabilities, which placed its users at great risk of different cyberattacks. The flaws were recently addressed, and the company urged the users to apply the fixes immediately.

Progress recently published a new security advisory in which it warned WhatsUp Gold users of the flaws and announced the release of the patch.

The advisory, however, does not discuss what the flaws are or how they might have been abused.

Adding a chip to the cartridge

The flaws are listed as:

CVE-2024-46905: CVSS 8.8/10
CVE-2024-46906: CVSS 8.8/10
CVE-2024-46907: CVSS 8.8/10
CVE-2024-46908: CVSS 8.8/10
CVE-2024-46909: CVSS 9.8/10
CVE-2024-8785: CVSS 9.8/10

In total, there were six vulnerabilities, two of which are rated critical - 9.8/10.

Progress Software said that the first fixed version is 24.0.1:

Are you a pro? Subscribe to our newsletter

Sign up to the TechRadar Pro newsletter to get all the top news, opinion, features and guidance your business needs to succeed!

Contact me with news and offers from other Future brandsReceive email from us on behalf of our trusted partners or sponsors