Exploitation Summary
EIP tracks 1 public exploit for CVE-2023-6595. PoCs published by sharmashreejaa.
AI-analyzed exploit summary The repository contains only a README.md file with a CVE identifier and no additional technical details or exploit code. It appears to be a placeholder or incomplete submission.
Description
In WhatsUp Gold versions released before 2023.1, an API endpoint was found to be missing an authentication mechanism. It is possible for an unauthenticated attacker to enumerate ancillary credential information stored within WhatsUp Gold.
Exploits (1)
nomisec
STUB
by sharmashreejaa · poc
https://github.com/sharmashreejaa/CVE-2023-6595
The repository contains only a README.md file with a CVE identifier and no additional technical details or exploit code. It appears to be a placeholder or incomplete submission.
Classification
Stub 90%
Attack Type
Other
Complexity
Trivial
Reliability
Theoretical
Target:
unknown
No auth needed
mistral-large-3 · analyzed Feb 18, 2026
Full analysis →
References (2)
Core 2
Core References
Product product
https://www.progress.com/network-monitoring
Vendor Advisory vendor-advisory
https://community.progress.com/s/article/WhatsUp-Gold-Security-Bulletin-December-2023
Scores
CVSS v3
7.5
EPSS
0.0080
EPSS Percentile
52.3%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Details
CWE
CWE-306
Status
published
Products (1)
progress/whatsup_gold
< 23.1.0
Published
Dec 14, 2023
Tracked Since
Feb 18, 2026