CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-8938

A Code Injection issue was discovered in DlgSelectMibFile.asp in Ipswitch WhatsUp Gold before 2018 (18.0). Malicious actors can inject a specially crafted SNMP MIB file that could allow them to execute arbitrary commands and code on the WhatsUp Gold server.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 44.1%

CVSS Severity

CVSS v3 Score 9.8

CVSS v2 Score 7.5

References

Products affected by CVE-2018-8938

Progress » Whatsup Gold » Version: N/A

cpe:2.3:a:progress:whatsup_gold:-
Progress » Whatsup Gold » Version: 11

cpe:2.3:a:progress:whatsup_gold:11
Progress » Whatsup Gold » Version: 15.02

cpe:2.3:a:progress:whatsup_gold:15.02
Progress » Whatsup Gold » Version: 16.3

cpe:2.3:a:progress:whatsup_gold:16.3
Progress » Whatsup Gold » Version: 16.4

cpe:2.3:a:progress:whatsup_gold:16.4
Progress » Whatsup Gold » Version: 17.1.1

cpe:2.3:a:progress:whatsup_gold:17.1.1
Progress » Whatsup Gold » Version: 7.0

cpe:2.3:a:progress:whatsup_gold:7.0
Progress » Whatsup Gold » Version: 7.03

cpe:2.3:a:progress:whatsup_gold:7.03
Progress » Whatsup Gold » Version: 7.04

cpe:2.3:a:progress:whatsup_gold:7.04
Progress » Whatsup Gold » Version: 8.0

cpe:2.3:a:progress:whatsup_gold:8.0
Progress » Whatsup Gold » Version: 8.01

cpe:2.3:a:progress:whatsup_gold:8.01
Progress » Whatsup Gold » Version: 8.03

cpe:2.3:a:progress:whatsup_gold:8.03

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-8938

Products

Pricing

Contact Us