ID
VAR-202205-0686
CVE
CVE-2022-29846
TITLE
Ipswitch, Inc. of WhatsUp Gold Vulnerability regarding information leakage in
Trust: 0.8
sources:
JVNDB: JVNDB-2022-009623
DESCRIPTION
In Progress Ipswitch WhatsUp Gold 16.1 through 21.1.1, and 22.0.0, it is possible for an unauthenticated attacker to obtain the WhatsUp Gold installation serial number. Ipswitch, Inc
Trust: 1.8
sources:
NVD: CVE-2022-29846 //
JVNDB: JVNDB-2022-009623 //
VULHUB: VHN-421355 //
VULMON: CVE-2022-29846
AFFECTED PRODUCTS
| vendor: | progress | model: | whatsup gold | scope: | lte | version: | 21.1.1 | Trust: 1.0 |
| vendor: | progress | model: | whatsup gold | scope: | gte | version: | 16.1 | Trust: 1.0 |
| vendor: | progress | model: | whatsup gold | scope: | eq | version: | 22.0.0 | Trust: 1.0 |
| vendor: | ipswitch | model: | whatsup gold | scope: | eq | version: | 16.1 to 21.1.1 | Trust: 0.8 |
| vendor: | ipswitch | model: | whatsup gold | scope: | eq | version: | 22.0.0 | Trust: 0.8 |
| vendor: | ipswitch | model: | whatsup gold | scope: | eq | version: | - | Trust: 0.8 |
| vendor: | ipswitch | model: | whatsup gold | scope: | - | version: | - | Trust: 0.8 |
sources:
JVNDB: JVNDB-2022-009623 //
NVD: CVE-2022-29846
CVSS
SEVERITY | CVSSV2 | CVSSV3 | |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
|
|
sources:
VULHUB: VHN-421355 //
VULMON: CVE-2022-29846 //
JVNDB: JVNDB-2022-009623 //
CNNVD: CNNVD-202205-3006 //
NVD: CVE-2022-29846
PROBLEMTYPE DATA
| problemtype: | NVD-CWE-noinfo | Trust: 1.0 |
| problemtype: | information leak (CWE-200) [NVD evaluation ] | Trust: 0.8 |
| problemtype: | CWE-200 | Trust: 0.1 |
sources:
VULHUB: VHN-421355 //
JVNDB: JVNDB-2022-009623 //
NVD: CVE-2022-29846
THREAT TYPE
remote
Trust: 0.6
sources:
CNNVD: CNNVD-202205-3006
TYPE
information disclosure
Trust: 0.6
sources:
CNNVD: CNNVD-202205-3006
PATCH
| title: | Progress Software WhatsUp Gold Repair measures for information disclosure vulnerabilities | url: | http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=193696 | Trust: 0.6 |
sources:
CNNVD: CNNVD-202205-3006
EXTERNAL IDS
| db: | NVD | id: | CVE-2022-29846 | Trust: 3.4 |
| db: | JVNDB | id: | JVNDB-2022-009623 | Trust: 0.8 |
| db: | CNNVD | id: | CNNVD-202205-3006 | Trust: 0.6 |
| db: | VULHUB | id: | VHN-421355 | Trust: 0.1 |
| db: | VULMON | id: | CVE-2022-29846 | Trust: 0.1 |
sources:
VULHUB: VHN-421355 //
VULMON: CVE-2022-29846 //
JVNDB: JVNDB-2022-009623 //
CNNVD: CNNVD-202205-3006 //
NVD: CVE-2022-29846
REFERENCES
| url: | https://community.progress.com/s/article/whatsup-gold-critical-product-alert-may-2022 | Trust: 2.6 |
| url: | https://www.progress.com/network-monitoring | Trust: 2.6 |
| url: | https://nvd.nist.gov/vuln/detail/cve-2022-29846 | Trust: 0.8 |
| url: | https://cxsecurity.com/cveshow/cve-2022-29846/ | Trust: 0.6 |
| url: | https://cwe.mitre.org/data/definitions/200.html | Trust: 0.1 |
| url: | https://nvd.nist.gov | Trust: 0.1 |
sources:
VULHUB: VHN-421355 //
VULMON: CVE-2022-29846 //
JVNDB: JVNDB-2022-009623 //
CNNVD: CNNVD-202205-3006 //
NVD: CVE-2022-29846
SOURCES
| db: | VULHUB | id: | VHN-421355 |
| db: | VULMON | id: | CVE-2022-29846 |
| db: | JVNDB | id: | JVNDB-2022-009623 |
| db: | CNNVD | id: | CNNVD-202205-3006 |
| db: | NVD | id: | CVE-2022-29846 |
LAST UPDATE DATE
2024-11-23T22:40:28.497000+00:00
SOURCES UPDATE DATE
| db: | VULHUB | id: | VHN-421355 | date: | 2022-05-20T00:00:00 |
| db: | VULMON | id: | CVE-2022-29846 | date: | 2022-05-20T00:00:00 |
| db: | JVNDB | id: | JVNDB-2022-009623 | date: | 2023-08-07T08:13:00 |
| db: | CNNVD | id: | CNNVD-202205-3006 | date: | 2022-05-23T00:00:00 |
| db: | NVD | id: | CVE-2022-29846 | date: | 2024-11-21T06:59:48.410 |
SOURCES RELEASE DATE
| db: | VULHUB | id: | VHN-421355 | date: | 2022-05-11T00:00:00 |
| db: | VULMON | id: | CVE-2022-29846 | date: | 2022-05-11T00:00:00 |
| db: | JVNDB | id: | JVNDB-2022-009623 | date: | 2023-08-07T00:00:00 |
| db: | CNNVD | id: | CNNVD-202205-3006 | date: | 2022-05-11T00:00:00 |
| db: | NVD | id: | CVE-2022-29846 | date: | 2022-05-11T18:15:29.057 |