Arbitrary Command Execution Vulnerability in Ipswitch WhatsUp Gold TFTP Server

Arbitrary Command Execution Vulnerability in Ipswitch WhatsUp Gold TFTP Server

CVE-2018-5777 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

An issue was discovered in Ipswitch WhatsUp Gold before 2017 Plus SP1 (17.1.1). Remote clients can take advantage of a misconfiguration in the TFTP server that could allow attackers to execute arbitrary commands on the TFTP server via unspecified vectors.

Learn more about our Cis Benchmark Audit For Server Software.