Skip to content

Commit

Permalink
20240826002 - Update (#985)
Browse files Browse the repository at this point in the history
  • Loading branch information
@DGOV-Bryce
DGOV-Bryce authored Sep 13, 2024
1 parent 4a028b0 commit 7c96161
Showing 1 changed file with 8 additions and 0 deletions.
8 changes: 8 additions & 0 deletions docs/advisories/20240826002-Progress-WhatsUp-Gold-Critical-Update.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -14,6 +14,8 @@ The Progress WhatsUp Gold team has recently disclosed multiple critical vulnerab

There is no evidence of exploitation affecting Western Australian Government networks at the time of publishing.

Since publication, there has been evidence of exploitation in the wild.

## Recommendation

The WA SOC recommends administrators apply the solutions as per vendor instructions to all affected devices within expected timeframe of *48 Hours...* (refer [Patch Management](../guidelines/patch-management.md)):
Expand All @@ -23,3 +25,9 @@ The WA SOC recommends administrators apply the solutions as per vendor instructi
## Additional References

- Cybersecurity News article: <https://securityonline.info/critical-vulnerabilities-uncovered-in-progress-whatsup-gold-cve-2024-6670-cve-2024-6671/>
- Protecting Against RCE Attacks Abusing WhatsUp Gold Vulnerabilities: https://www.trendmicro.com/en_us/research/24/i/whatsup-gold-rce.html

### Change log

- 2024-08-26: Advisory created.
- 2024-09-13: Update of “What has been observed” with evidence of exploitation and secondary additional reference link.

0 comments on commit 7c96161

Please sign in to comment.