CVE-2024-4885

CRITICAL KEV NUCLEI

Progress WhatsUp Gold < 23.1.3 - Unauthenticated Remote Code Execution via ExportUtilities.Export.GetFileWithoutZip

Title source: llm

Exploitation Summary

CVE-2024-4885 is actively exploited and listed in the CISA Known Exploited Vulnerabilities (KEV) catalog, added March 3, 2025. EIP tracks 1 public exploit from researchers including sinsinology. A Nuclei detection template is also available.

AI-analyzed exploit summary This repository contains a functional exploit for CVE-2024-4885, targeting Progress WhatsUp Gold's unauthenticated remote code execution vulnerability via the GetFileWithoutZip endpoint. The exploit uploads a webshell by leveraging a crafted SOAP request to manipulate the RecurringReport task.

Description

In WhatsUp Gold versions released before 2023.1.3, an unauthenticated Remote Code Execution vulnerability in Progress WhatsUpGold. The WhatsUp.ExportUtilities.Export.GetFileWithoutZip allows execution of commands with iisapppool\nmconsole privileges.

Exploits (1)

nomisec WORKING POC 17 stars

by sinsinology · remote

https://github.com/sinsinology/CVE-2024-4885

View Code ZIP pw:eip

This repository contains a functional exploit for CVE-2024-4885, targeting Progress WhatsUp Gold's unauthenticated remote code execution vulnerability via the GetFileWithoutZip endpoint. The exploit uploads a webshell by leveraging a crafted SOAP request to manipulate the RecurringReport task.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Progress WhatsUp Gold

No auth needed

Prerequisites: Network access to the target server · A callback server to host the webshell

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Nuclei Templates (1)

Progress Software WhatsUp Gold GetFileWithoutZip Directory Traversal - Remote Code Execution

CRITICALVERIFIEDby SinSinology,iamnoooob,rootxharsh,pdresearch

Shodan: html:"WhatsUp Gold"

References (3)

Core 3

Core References

US Government Resource

https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2024-4885

Product product

https://www.progress.com/network-monitoring

Vendor Advisory vendor-advisory

https://community.progress.com/s/article/WhatsUp-Gold-Security-Bulletin-June-2024

Scores

CVSS v3 9.8

EPSS 0.9427

EPSS Percentile 99.9%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation active

Automatable yes

Technical Impact total

Details

CISA KEV 2025-03-03

VulnCheck KEV 2024-08-06

ENISA EUVD EUVD-2024-44455

CWE

CWE-22

Status published

Products (1)

progress/whatsup_gold < 23.1.3

Published Jun 25, 2024

KEV Added Mar 03, 2025

Tracked Since Feb 18, 2026