← back
CVE-2022-29846

CVE-2022-29846

EPSS 5.1%
Vexday Risk Score
18Low
SSVC decision (CISA)
Attend
PoC available → attend closely
Exploit maturity
Functional exploit
Automatable exploit available (Nuclei/Metasploit).
CVSS EPSS 5.1%KEV nãoPoC Nuclei Metasploit simPatch
Lifecycle
11 May 2022Published on NVD
22 Nov 2022Metasploit module available
Weaponization speed
194 daysto Metasploit module
Recommendation: Plan a near-term fix — a public PoC already exists.
In Progress Ipswitch WhatsUp Gold 16.1 through 21.1.1, and 22.0.0, it is possible for an unauthenticated attacker to obtain the WhatsUp Gold installation serial number.
Affected products
n/a · n/a