PT-2019-7902 · Zoho · Zoho Manageengine Applications Manager

Published

2019-05-23

Updated

2019-05-23

CVE-2017-11740

CVSS v3.1

8.8

High

Vector

AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Zoho ManageEngine Application Manager version 13.1 Build 13100

Description The issue allows an administrative user to upload files or binaries that can be executed when an alarm occurs. An attacker can exploit this functionality by uploading a malicious script, which can then be executed on the remote system.

Recommendations For Zoho ManageEngine Application Manager version 13.1 Build 13100, consider restricting the upload functionality for administrative users to prevent the execution of malicious scripts until a fix is available. As a temporary workaround, limit the types of files that can be uploaded to prevent executable binaries from being uploaded.

Exploit

Fix

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-20

Related Identifiers

CVE-2017-11740

Affected Products

Zoho Manageengine Applications Manager

PT-2019-7902 · Zoho · Zoho Manageengine Applications Manager

CVE-2017-11740

Weakness Enumeration

Related Identifiers

Affected Products

References · 5