Paessler closes Vulnerability in PRTG – CVE-2024-12833

2025-01-13

On 9 January 2025, the company Paessler published a risky vulnerability in its monitoring solution PRTG.

This vulnerability affects all Paessler PRTG < 25.1.102.1373. Security gaps were closed with Version 25.1.102.1373.

For further details, please refer to PRTG Network Monitor – Version History. The BSI (German Federal Office for Information Security) has listed the vulnerability under WID-SEC-2024-3763 and rates the overall threat with an CVSS score of 8.0.

Given that the listed vulnerabilities require the attacker to be authenticated, they can generally only be exploited by an internal perpetrator in a VIVAVIS control system environment. We therefore categorise the threat level as generally lower, but recommend installing the provided patches as soon as possible.

If you have further questions on this matter or if you require support, please contact our Customer Support.

RSS-Feed

Our RSS feed always keeps you up to date! This way, you’ll receive same-day notification when a new article has been posted to the IT Security Bulletin. Just enter the following link in your feed reader: https://www.vivavis.com/en/category/it-security-en/feed/

You can find out how to integrate the RSS feed into Outlook here.