CVE-2024-5016: 
WhatsUp Gold vulnerability analysis and mitigation

CVE-2024-5016 is a vulnerability affecting Progress Software's WhatsUp Gold network monitoring software in versions released before 2023.1.3. The vulnerability was discovered by Sina Kheirkhah of Summoning Team, working with Trend Micro Zero Day Initiative, and was disclosed on June 25, 2024. The vulnerability specifically affects the Distributed Edition installations of WhatsUp Gold (ZDI Advisory, NVD).

The vulnerability exists in the main message processing routines, specifically in NmDistributed.DistributedServiceBehavior.OnMessage for server and NmDistributed.DistributedClient.OnMessage for clients. It is classified as a deserialization of untrusted data vulnerability (CWE-502). The vulnerability has been assigned a CVSS v3.1 base score of 7.2 (High), with the vector string CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H. Authentication is required to exploit this vulnerability (ZDI Advisory, NVD).

If successfully exploited, this vulnerability allows attackers to execute arbitrary code with SYSTEM privileges on affected installations. The high-privilege context of execution means attackers could potentially gain complete control over the compromised system (ZDI Advisory).

Progress Software has released version 2023.1.3 of WhatsUp Gold to address this vulnerability. Users are strongly advised to upgrade to this version to mitigate the risk (Progress Advisory).