Authentication Bypass by Spoofing
CVE-2024-12108
Summary
In WhatsUp Gold versions released before 2024.0.2, an attacker can gain access to the WhatsUp Gold server via the public API.
- LOW
- NETWORK
- HIGH
- CHANGED
- NONE
- LOW
- HIGH
- NONE
CWE-290 - Authentication Bypass by Spoofing
This attack-focused weakness is caused by improperly implemented authentication schemes that are subject to spoofing attacks.
References
Advisory Timeline
- Published
