CVE-2024-4885

Exploited in the Wild ✓ Confirmed 0-Day

Triaged: March 20, 2026 3 articles

VulnLookup ↗ NVD ↗ MITRE ↗ CISA KEV ↗

EPSS Score

Source: FIRST.org · 2026-05-24

94.27%

probability

This CVE has a 94.27% probability of being exploited in the next 30 days.

0% Top 99.9th percentile of all CVEs 100%

CVSS score unavailable

Neither CIRCL nor NVD returned a CVSS score for this CVE. View on VulnerabilityLookup ↗

Attack Intelligence

CWE-22 · Path Traversal CWE-664 · Improper Control of a Resource Through its Lifetime CWE-706 · Use of Incorrectly-Resolved Name or Reference

Exploits & PoC

sinsinology/CVE-2024-4885

Exploit for CVE-2024-4885

1 repo — triés par ⭐ Rechercher sur GitHub ↗

Cisco, Hitachi, Microsoft, and Progress Flaws Actively Exploited—CISA Sounds Alarm

TheHackerNews

Critical Security Flaw in WhatsUp Gold Under Active Attack - Patch Now

TheHackerNews

Progress Software Releases Patches for 6 Flaws in WhatsUp Gold – Patch Now

TheHackerNews

Signal Intelligence

Confidenceⓘ

85%

EPSS 94.27%

Mentions 3

CNA Information

Analyst Note

CVE-2024-4885 is explicitly named as actively exploited in the wild (Progress WhatsUp Gold RCE with CVSS 9.8). CISA added it to the KEV catalog based on evidence of active exploitation. Timing indicates exploitation occurred concurrent with or prior to the September 20, 2024 patch release by Progress Software, meeting zero-day criteria.

Threat Actors 2

Dalbit

apt_group Information theft and espionage 🇨🇳 CN

Shadow Network

apt_group Information theft and espionage 🇨🇳 CN

Triage Info

Decided atMar 20, 2026