CVE-2024-6670

Name of the Vulnerable Software and Affected Versions: WhatsUp Gold versions prior to 2024.0.0

Description: The issue is related to a SQL Injection vulnerability in WhatsUp Gold, which can be exploited by an unauthenticated attacker to retrieve a user's encrypted password. The vulnerability is actively exploited in the wild and has been integrated into various exploit tools. It is estimated that over 3,400 services are potentially affected. The vulnerability can be exploited without prior authentication or special privileges, making it particularly dangerous.

Recommendations: For versions prior to 2024.0.0, update to version 2024.0.0 or later to resolve the issue. As a temporary workaround, consider restricting access to the /NmConsole/Platform/PerformanceMonitorErrors/HasErrors endpoint until a patch is available. Additionally, avoid using vulnerable parameters in affected API endpoints until the issue is resolved.