WhatsUp Gold Users Beware: Critical Authentication Bypass Flaw Exposed – CVE-2024-7763 (CVSS 9.8)

Progress Software has disclosed a severe new vulnerability in its popular network monitoring solution, WhatsUp Gold, that exposes organizations to potential cyberattacks by allowing unauthorized access to user credentials. The flaw, tracked as CVE-2024-7763 and rated CVSS 9.8, enables attackers to bypass authentication controls and obtain encrypted credentials, posing a critical risk to any network using affected versions.

WhatsUp Gold, known for its comprehensive network visibility features, is widely deployed in corporate environments to monitor and manage network devices, servers, virtual machines, and more. Unfortunately, this vulnerability affects all versions released before 2024.0.0. In an update on October 24, Progress warned users, “an Authentication Bypass issue exists which allows an attacker to obtain encrypted user credentials,” thereby jeopardizing the security of sensitive network operations.

Attackers exploiting this vulnerability gain access to encrypted user credentials, potentially opening the door to further unauthorized access. For administrators seeking signs of compromise, the Settings > Actions and Alerts > Alert Center Libraries > Threshold tab should be reviewed for unusual entries in the “Name” column.

CVE-2024-7763 joins a list of high-risk vulnerabilities in WhatsUp Gold revealed in Progress’s August security bulletin. Two other vulnerabilities, CVE-2024-6670 and CVE-2024-6671, also carry a CVSS score of 9.8 and enable SQL Injection attacks that could compromise encrypted passwords in single-user configurations. A third flaw, CVE-2024-6672, allows for privilege escalation by modifying a privileged user’s password through SQL injection, granting unauthorized access to elevated controls.

Notably, two vulnerabilities CVE-2024-6670 and CVE-2024-6671 have been exploited actively, with cybercriminals targeting vulnerable versions in the wild.

To protect against these vulnerabilities, Progress strongly advises WhatsUp Gold users to upgrade to the latest release, version 2024.0.0 or newer.

Related Posts:

• CISA Flags Two Actively Exploited Vulnerabilities: Critical Threats to Windows and WhatsUp Gold
• WhatsUp Gold Under Attack: New RCE Vulnerabilities Exploited
• Critical Vulnerabilities in Progress WhatsUp Gold Demand Immediate Action
• Proof-of-Concept Exploit Released for WhatsUp Gold Authentication Bypass (CVE-2024-6670)