← ExploitWatch
HomeExploited Vulnerabilities

CVE-2024-4885 — Actively Exploited: WhatsUp Gold (Progress)

Progress WhatsUp Gold contains a path traversal vulnerability that allows an unauthenticated attacker to achieve remote code execution.

CVE IDCVE-2024-4885
VendorProgress
ProductWhatsUp Gold
Vulnerability nameProgress WhatsUp Gold Path Traversal Vulnerability
Date added2025-03-03
Remediation due2025-03-24
Known ransomware useUnknown
Required actionApply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
DescriptionProgress WhatsUp Gold contains a path traversal vulnerability that allows an unauthenticated attacker to achieve remote code execution.
SourceCISA Known Exploited Vulnerabilities

🔍 Search all exploited vulnerabilities →