Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2019-19774

4 documents4 sources

Severity

8.8HIGH

EPSS

9.1%

top 7.35%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

Zohocorp Manageengine Eventlog Analyzer

Timeline

PublishedDec 13

Latest updateMay 24

Description

An issue was discovered in Zoho ManageEngine EventLog Analyzer 10.0 SP1 before Build 12110. By running "select hostdetails from hostdetails" at the /event/runquery.do endpoint, it is possible to bypass the security restrictions that prevent even administrative users from viewing credential data stored in the database, and recover the MD5 hashes of the accounts used to authenticate the ManageEngine platform to the managed machines on the network (most often administrative accounts). Specifically,…

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 2.8 | Impact: 5.9

Affected Packages1 packages

▶NVDzohocorp/manageengine_eventlog_analyzer10.0 — 12.1.1

🔴Vulnerability Details

GHSA

GHSA-5855-w2f6-pwrj: An issue was discovered in Zoho ManageEngine EventLog Analyzer 10↗2022-05-24

▶

CVEList

CVE-2019-19774: An issue was discovered in Zoho ManageEngine EventLog Analyzer 10↗2019-12-13

▶

💥Exploits & PoCs

Exploit-DB

ManageEngine EventLog Analyzer 10.0 - Information Disclosure↗2020-02-24

▶