ZDI-24-1187: Progress Software WhatsUp Gold getMonitorJoin SQL Injection Privilege Escalation Vulnerability

August 29, 2024

Read Time:15 Second

This vulnerability allows remote attackers to escalate privileges on affected installations of Progress Software WhatsUp Gold. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The ZDI has assigned a CVSS rating of 8.8. The following CVEs are assigned: CVE-2024-6672.

Advisories

DSA-5761-1 chromium – security update

August 29, 2024

Read Time:9 Second

Security issues were discovered in Chromium which could result
in the execution of arbitrary code, denial of service, or information
disclosure.

https://security-tracker.debian.org/tracker/DSA-5761-1

Advisories

DSA-5760-1 ghostscript – security update

August 29, 2024

Read Time:12 Second

Multiple security issues were discovered in Ghostscript, the GPL
PostScript/PDF interpreter, which could result in denial of service and
potentially the execution of arbitrary code if malformed document files
are processed.

https://security-tracker.debian.org/tracker/DSA-5760-1

News, Advisories and much more

Exit mobile version

Cyber Security News

Daily Archives: August 29, 2024

ZDI-24-1187: Progress Software WhatsUp Gold getMonitorJoin SQL Injection Privilege Escalation Vulnerability

DSA-5761-1 chromium – security update

DSA-5760-1 ghostscript – security update

News, Advisories and much more