CVE-2024-4883

CRITICAL

Progress WhatsUp Gold < 23.1.3 - Unauthenticated Remote Code Execution via NmApi.exe

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2024-4883. PoCs published by sinsinology.

AI-analyzed exploit summary This is a functional exploit for CVE-2024-4883, targeting Progress WhatsUp Gold's unauthenticated remote code execution via the WriteDataFile method. It plants a webshell in the target's web directory by leveraging a write-what-where primitive.

Description

In WhatsUp Gold versions released before 2023.1.3, a Remote Code Execution issue exists in Progress WhatsUp Gold. This vulnerability allows an unauthenticated attacker to achieve the RCE as a service account through NmApi.exe.

Exploits (1)

nomisec WORKING POC 11 stars
by sinsinology · poc
https://github.com/sinsinology/CVE-2024-4883

This is a functional exploit for CVE-2024-4883, targeting Progress WhatsUp Gold's unauthenticated remote code execution via the WriteDataFile method. It plants a webshell in the target's web directory by leveraging a write-what-where primitive.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target: Progress WhatsUp Gold (versions affected by CVE-2024-4883)
No auth needed
Prerequisites: Network access to the target's NetTcpBinding endpoint (default port 9643) · A webshell file to upload
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2

Scores

CVSS v3 9.8
EPSS 0.6478
EPSS Percentile 99.1%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation poc
Automatable yes
Technical Impact total

Details

CWE
CWE-77 CWE-78 CWE-94
Status published
Products (1)
progress/whatsup_gold < 23.1.3
Published Jun 25, 2024
Tracked Since Feb 18, 2026