CVE-2024-12105: 
WhatsUp Gold vulnerability analysis and mitigation

In WhatsUp Gold versions released before 2024.0.2, an authenticated user can exploit a path traversal vulnerability through a specially crafted HTTP request that can lead to information disclosure. The vulnerability, identified as CVE-2024-12105, was discovered by Marcin 'Icewall' Noga of Cisco Talos and has a CVSS score of 6.5 (NVD, Talos).

The vulnerability exists in the SNMP Extended Active Monitor functionality of WhatsUp Gold. The issue lies in the handling of SnmpExtendedActiveMonitor requests where the xmlName argument is fully controlled by an attacker and is used in the File.OpenText function without proper path traversal protection. The vulnerability has been assigned a CVSS v3.1 score of 6.5 (MEDIUM) with the vector string CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N, indicating network accessibility with low attack complexity and requiring low privileges (Talos).

The exploitation of this vulnerability could allow an authenticated attacker to conduct path traversal attacks and check the existence of any file within the file system, potentially leading to sensitive information disclosure (SOCRadar).

Progress Software has released version 24.0.2 of WhatsUp Gold to address this vulnerability. Users are strongly advised to upgrade their installations to this version to mitigate the risk (SOCRadar).