CVE-2024-5009

HIGH

WhatsUp Gold < 23.1.3 - Improper Access Control in InstallController.SetAdminPassword

Title source: llm

Exploitation Summary

EIP tracks 2 public exploits for CVE-2024-5009. PoCs published by sinsinology, th3gokul.

AI-analyzed exploit summary The repository contains a functional exploit for CVE-2024-5009, which allows privilege escalation in Progress WhatsUp Gold by changing the administrator password via an unauthenticated HTTP POST request to the SetAdminPassword endpoint.

Description

In WhatsUp Gold versions released before 2023.1.3, an Improper Access Control vulnerability in Wug.UI.Controllers.InstallController.SetAdminPassword allows local attackers to modify admin's password.

Exploits (2)

nomisec WORKING POC 13 stars

by sinsinology · poc

https://github.com/sinsinology/CVE-2024-5009

View Code ZIP pw:eip

The repository contains a functional exploit for CVE-2024-5009, which allows privilege escalation in Progress WhatsUp Gold by changing the administrator password via an unauthenticated HTTP POST request to the SetAdminPassword endpoint.

Classification

Working Poc 100%

Attack Type

Auth Bypass

Complexity

Trivial

Reliability

Reliable

Target: Progress WhatsUp Gold

No auth needed

Prerequisites: Network access to the target WhatsUp Gold instance

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation

devstral-2 · analyzed Feb 18, 2026 Full analysis →

nomisec WORKING POC 6 stars

by th3gokul · poc

https://github.com/th3gokul/CVE-2024-5009

View Code ZIP pw:eip

The repository contains a functional exploit for CVE-2024-5009, a privilege escalation vulnerability in WhatsUp Gold. The exploit sends a crafted POST request to the SetAdminPassword endpoint to change the admin password, demonstrating the vulnerability.

Classification

Working Poc 95%

Attack Type

Auth Bypass

Complexity

Trivial

Reliability

Reliable

Target: WhatsUp Gold

No auth needed

Prerequisites: Network access to the target WhatsUp Gold instance

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation

devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (2)

Core 2

Core References

Product product

https://www.progress.com/network-monitoring

Vendor Advisory vendor-advisory

https://community.progress.com/s/article/WhatsUp-Gold-Security-Bulletin-June-2024

Scores

CVSS v3 8.4

EPSS 0.1503

EPSS Percentile 96.3%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation poc

Automatable no

Technical Impact total

Details

CWE

CWE-269

Status published

Products (1)

progress/whatsup_gold < 23.1.3

Published Jun 25, 2024

Tracked Since Feb 18, 2026