<ul><li>Hackers are exploiting critical SQL injection vulnerabilities (CVE-2024-6670 and CVE-2024-6671) in Progress Software's WhatsUp Gold for RCE attacks.</li><li>A tailored Sigma rule set is available on the SOC Prime Platform to detect exploitation attempts.</li><li>Trend Micro researchers observed RCE attacks using the Active Monitor PowerShell Script feature in WhatsUp Gold.</li><li>Mitigation measures include upgrading to the latest patched software version, restricting access, and using strong passwords.</li></ul>

CVE-2024-6670 and CVE-2024-6671 Detection: RCE Attacks Exploiting Critical SQL Injection Vulnerabilities in WhatsUp Gold

Discover more