PT-2018-10774 · Zoho · Zoho Manageengine Desktop Central

Published

2018-07-16

Updated

2018-09-17

CVE-2018-11716

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Zoho ManageEngine Desktop Central versions prior to 100230

Description An issue allows unauthenticated remote access to all log files of a Desktop Central instance, which may contain critical information such as location of enrolled devices, cleartext passwords, and patching level. This access can be achieved via a GET request on port 8022, 8443, or 8444.

Recommendations For versions prior to 100230, update to version 100230 or later to resolve the issue. As a temporary workaround, consider restricting access to ports 8022, 8443, and 8444 to minimize the risk of exploitation.

Exploit

Fix

Insertion into Log File

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-532

Related Identifiers

CVE-2018-11716

Affected Products

Zoho Manageengine Desktop Central

PT-2018-10774 · Zoho · Zoho Manageengine Desktop Central

CVE-2018-11716

Weakness Enumeration

Related Identifiers

Affected Products

References · 4