Progress Software News Articles
Recent news articles refferecing the vendors vulnerabilities.
Critical Telerik UI Flaw Puts Millions of Enterprise Applications at Risk
CVE-2025-3600 affects 14 years of Telerik UI releases, enabling DoS attacks and potential RCE.
watchTowr LabsCVE-2025-3600More Than DoS (Progress Telerik UI for ASP.NET AJAX Unsafe Reflection CVE-2025-3600)
Welcome back. We’re excited to yet again publish memes under the guise of research and inevitably receive hate mail. But today, we’ll be doing something slightly different to normal. “Wow, watchTowr, will you actually be publishing useful information instead of memes?” Today, instead of pulling ap...
Unsafe Deserialization Vulnerability CVE-2024-10095 - Telerik UI for WPF
How to mitigate CVE-2024-10095, an unsafe deserialization vulnerability.
The Hacker NewsCVE-2024-4885Cisco, Hitachi, Microsoft, and Progress Flaws Actively Exploited—CISA Sounds Alarm
CISA adds five exploited vulnerabilities to its KEV catalog, including flaws in Cisco, Microsoft, and Progress software.
Help Net SecurityCVE-2024-8785PoC exploit for critical WhatsUp Gold RCE vulnerability released (CVE-2024-8785) - Help Net Security
Researchers have published a proof-of-concept (PoC) exploit for CVE-2024-8785, a critical remote code execution flaw in Progress WhatsUp Gold.
Exploit released for critical WhatsUp Gold RCE flaw, patch now
A proof-of-concept (PoC) exploit for a critical-severity remote code execution flaw in Progress WhatsUp Gold has been published, making it critical to install the latest security updates as soon as possible.
GBHackers NewsCVE-2024-1212CISA Warns Kemp LoadMaster OS Command Injection Vulnerability Exploited in Attacks
CISA issued an urgent security advisory warning organizations about an active exploitation of a vulnerability in Progress Kemp LoadMaster.
CISA Warns of Progress Kemp LoadMaster Vulnerability Exploitation
CISA is warning organizations that CVE-2024-1212, a Kemp LoadMaster OS command injection vulnerability, is being exploited in attacks.
CISA tags Progress Kemp LoadMaster flaw as exploited in attacks
The U.S. Cybersecurity & Infrastructure Security Agency (CISA) has added three new flaws in its Known Exploited Vulnerabilities (KEV) catalog, including a critical OS command injection impacting Progress Kemp LoadMaster.
The Hacker NewsCVE-2024-1212Warning: VMware vCenter and Kemp LoadMaster Flaws Under Active Exploitation
Critical flaws in Progress Kemp LoadMaster and VMware vCenter Server are under active exploitation, warns CISA.
Recent WhatsUp Gold Vulnerabilities Possibly Exploited in Ransomware Attacks
Two recently patched Progress Software WhatsUp Gold vulnerabilities may have been exploited in the wild, possibly in ransomware attacks.
Hackers targeting WhatsUp Gold with public exploit since August
Hackers have been leveraging publicly available exploit code for two critical vulnerabilities in the WhatsUp Gold network availability and performance monitoring solution from Progress Software.
The Cyber ExpressCVE-2024-4885Critical CVE-2024-4885 Flaw In WhatsUp Gold Exposes Systems
Progress Software’s WhatsUp Gold has a severe CVE-2024-4885 flaw allowing remote code execution.
6月WhatsUp Gold修補漏洞,8月初駭客攻擊行動開始現蹤
本月初Shadowserver基金會發現,Progress在6月修補的RCE漏洞CVE-2024-4885,已被實際用於攻擊行動,呼籲IT人員要儘速修補
Red Hot CyberCVE-2024-4885WhatsUp Gold Sotto Attacco: Aggiornamento Immediato Essenziale
Nuova vulnerabilità critica CVE-2024-4885 in WhatsUp Gold che consente l'esecuzione di codice remoto senza autenticazione. Aggiorna subito alla versione 2023.1.3 per proteggere la tua rete dagli attacchi informatici.
bvtech.orgCVE-2024-4885Critical Security Flaw in WhatsUp Gold Under Active Attack - Patch Now - BVTech San Antonio | Next-Gen Managed IT Services
A critical security flaw impacting Progress Software WhatsUp Gold is seeing active exploitation attempts, making it essential that users move quickly to apply the latest. The vulnerability in question is CVE-2024-4885 (CVSS score: 9.8), an unauthenticated remote code execution bug … Read More
The Hacker NewsCVE-2024-4885Critical Security Flaw in WhatsUp Gold Under Active Attack - Patch Now
Urgent update required for WhatsUp Gold due to active exploits of critical security flaw CVE-2024-4885. Patch now to secure your network.
Critical Progress WhatsUp RCE flaw now under active exploitation
Threat actors are actively attempting to exploit a recently fixed Progress WhatsUp Gold remote code execution vulnerability on exposed servers for initial access to corporate networks.
The RegisterCVE-2024-6327Critical bug in Progress Telerik Report Server leads to RCE
Progress Software's latest security advisory warns customers about the second critical vulnerability targeting its Telerik Report Server in as many months. CVE-2024-6327 is an insecure deserialization...
Help Net SecurityCVE-2024-6327Progress fixes critical RCE flaw in Telerik Report Server, upgrade ASAP! (CVE-2024-6327) - Help Net Security
Progress Software has fixed a critical RCE vulnerability (CVE-2024-6327) in its Telerik Report Server solution.
The Hacker NewsCVE-2024-6327Critical Flaw in Telerik Report Server Poses Remote Code Execution Risk
Progress Software urges users to update Telerik Report Server due to a critical security flaw (CVE-2024-6327) with a CVSS score of 9.9.
Security AffairsCVE-2024-6327Progress Software fixed critical RCE CVE-2024-6327 in the Telerik Report Server
Progress Software addressed a critical remote code execution vulnerability, tracked as CVE-2024-6327, in the Telerik Report Server.
Progress warns of critical RCE bug in Telerik Report Server
Progress Software has warned customers to patch a critical remote code execution security flaw in the Telerik Report Server that can be used to compromise vulnerable devices.
SecurityLab.ruCVE-2024-4885WhatsUp Gold открывает новую дверь для компрометации корпоративных секретов
CVE-2024-4885 превратила инструмент мониторинга в мощное оружие киберпреступников.