← volver
CVE-2022-29847

CVE-2022-29847

EPSS 55.9%
Vexday Risk Score
30Bajo
Decisión SSVC (CISA)
Attend
PoC disponible → seguir de cerca
Madurez del exploit
Exploit funcional
Exploit automatizable disponible (Nuclei/Metasploit).
CVSS EPSS 55.9%KEV nãoPoC Nuclei Metasploit simPatch
Ciclo de vida
11 may 2022Publicada en NVD
22 nov 2022Exploit Metasploit disponible
Velocidad de armamento
194 díashasta el módulo Metasploit
Recomendación: Planificar corrección próxima — ya existe PoC pública.
In Progress Ipswitch WhatsUp Gold 21.0.0 through 21.1.1, and 22.0.0, it is possible for an unauthenticated attacker to invoke an API transaction that would allow them to relay encrypted WhatsUp Gold user credentials to an arbitrary host.
Productos afectados
n/a · n/a