CVE-2024-5009

WhatsUp Gold SetAdminPassword Improper Access Control Privilege Escalation Vulnerability

Severity Score

8.4

*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

Attend

*SSVC

Descriptions

In WhatsUp Gold versions released before 2023.1.3, an Improper Access Control vulnerability in Wug.UI.Controllers.InstallController.SetAdminPassword allows local attackers to modify admin's password.

En las versiones de WhatsUp Gold lanzadas antes de 2023.1.3, una vulnerabilidad de control de acceso inadecuado en Wug.UI.Controllers.InstallController.SetAdminPassword permite a atacantes locales modificar la contraseña del administrador.

This vulnerability allows local attackers to escalate privileges on affected installations of Progress Software WhatsUp Gold. An attacker must first obtain the ability to execute low-privileged code on the target system or send an HTTP request from a local machine in order to exploit this vulnerability.
The specific flaw exists within the implementation of SetAdminPassword method. The issue results from the improper access control. An attacker can leverage this vulnerability to escalate privileges to resources normally protected from the user.

*Credits: Sina Kheirkhah (@SinSinology) of Summoning Team (@SummoningTeam) working with Trend Micro Zero Day Initiative

CVSS Scores

Progress Software Corporationv3.1 8.4

Attack Vector

Local

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

* Common Vulnerability Scoring System

SSVC

Decision:Attend

Exploitation

Poc

Automatable

Tech. Impact

Total

* Organization's Worst-case Scenario

Timeline

2024-05-16 CVE Reserved
2024-06-25 CVE Published
2024-07-08 First Exploit
2024-08-01 CVE Updated
2024-09-07 EPSS Updated
---------- Exploited in Wild
---------- KEV Due Date

CWE

CWE-269: Improper Privilege Management

CAPEC

CAPEC-113: Interface Manipulation
CAPEC-233: Privilege Escalation

References (4)

URL	Tag	Source
https://www.progress.com/network-monitoring	Product

URL	Date	SRC
https://github.com/sinsinology/CVE-2024-5009	2024-07-08
https://github.com/th3gokul/CVE-2024-5009	2024-07-09

URL	Date	SRC

URL	Date	SRC
https://community.progress.com/s/article/WhatsUp-Gold-Security-Bulletin-June-2024	2024-06-26

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Progress Software Corporation Search vendor "Progress Software Corporation"		WhatsUp Gold Search vendor "Progress Software Corporation" for product "WhatsUp Gold"				>= 2023.1.0 < 2023.1.3 Search vendor "Progress Software Corporation" for product "WhatsUp Gold" and version " >= 2023.1.0 < 2023.1.3"		en		Affected