cve/2023/CVE-2023-6595.md

### [CVE-2023-6595](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6595)
![](https://img.shields.io/static/v1?label=Product&message=WhatsUp%20Gold&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-862%20Missing%20Authorization&color=brighgreen)

### Description

In WhatsUp Gold versions released before 2023.1, an API endpoint was found to be missing an authentication mechanism. It is possible for an unauthenticated attacker to enumerate ancillary credential information stored within WhatsUp Gold.

### POC

#### Reference
No PoCs from references.

#### Github
- https://github.com/nomi-sec/PoC-in-GitHub
- https://github.com/sharmashreejaa/CVE-2023-6595
Update Sat May 25 21:48:12 CEST 2024 2024-05-25 21:48:12 +02:00			`### [CVE-2023-6595](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6595)`
			`![](https://img.shields.io/static/v1?label=Product&message=WhatsUp%20Gold&color=blue)`
			`![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)`
			`![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-862%20Missing%20Authorization&color=brighgreen)`

			`### Description`

			`In WhatsUp Gold versions released before 2023.1, an API endpoint was found to be missing an authentication mechanism. It is possible for an unauthenticated attacker to enumerate ancillary credential information stored within WhatsUp Gold.`

			`### POC`

			`#### Reference`
			`No PoCs from references.`

			`#### Github`
			`- https://github.com/nomi-sec/PoC-in-GitHub`
Update CVE sources 2024-05-28 08:49 2024-05-28 08:49:17 +00:00			`- https://github.com/sharmashreejaa/CVE-2023-6595`
Update Sat May 25 21:48:12 CEST 2024 2024-05-25 21:48:12 +02:00