COOEY // HUBcompliance · community · intelligence

FAIL › dossier

WhatsUp Gold product

2
failure events
0
zero-days
1
RCEs
2
on KEV
1
critical
80
worst shame

Dossier not yet built — the RAG curator builds one for players with ≥2 failure events (factory/dossier.py). The failure history and sentiment below are live.

Failure history 2 events

DateEventSevFlagsShameSummary
2024-09-16 CVE-2024-6670 critical ⌖KEV 80 Progress WhatsUp Gold contains a SQL injection vulnerability that allows an unauthenticated attacker to retrieve the user's encrypted password if the application is configured with only a single user.
2025-03-03 CVE-2024-4885 high ⚡RCE ⌖KEV 65 Progress WhatsUp Gold contains a path traversal vulnerability that allows an unauthenticated attacker to achieve remote code execution.