ET WEB_SPECIFIC_APPS Progress WhatsUp Gold Pre-Auth WriteDataFile Directory Traversal RCE M2 (CVE-2024-4883)

SID: 2068883Rev: 12 views
Sourceet/open
CreatedApril 21, 2026
UpdatedApril 21, 2026
Classificationweb-application-activity
alert tcp any any -> [$HOME_NET,$HTTP_SERVERS] 9643 (msg:"ET WEB_SPECIFIC_APPS Progress WhatsUp Gold Pre-Auth WriteDataFile Directory Traversal RCE M2 (CVE-2024-4883)"; flow:established,to_server; content:"WriteDataFile"; fast_pattern; content:"|2f|WUGDataAccess|2e|"; distance:0; content:"|2e|"; pcre:"/^.{0,10}(?:\x2f|\x5c|%5[Cc]|%2[Ff])?(?:(?:\x2e|%2[Ee]){1,2}(?:\x2f|\x5c|%5[Cc]|%2[Ff]){1,}){2,}/R"; reference:url,summoning.team/blog/progress-whatsup-gold-writedatafile-cve-2024-4883-rce/; reference:cve,2024-4883; classtype:web-application-activity; sid:2068883; rev:1; metadata:attack_target Server, created_at 2026_04_21, cve CVE_2024_4883, deployment Perimeter, deployment Internal, confidence High, signature_severity Major, tag Exploit, updated_at 2026_04_21, mitre_tactic_id TA0007, mitre_tactic_name Discovery, mitre_technique_id T1083, mitre_technique_name File_And_Directory_Discovery; target:dest_ip;)

References

urlsummoning.team/blog/progress-whatsup-gold-writedatafile-cve-2024-4883-rce/
cve2024-4883

Metadata

attack targetServer
created at2026_04_21
deploymentInternal
confidenceHigh
signature severityMajor
tagExploit
updated at2026_04_21
mitre tactic idTA0007
mitre tactic nameDiscovery
mitre technique idT1083
mitre technique nameFile_And_Directory_Discovery

Comments (0)

Please sign in to leave a comment.
Sign in

No comments yet. Be the first to comment!