CVE-2020-11552

Name of the Vulnerable Software and Affected Versions ManageEngine ADSelfService Plus versions prior to build 6003

Description An elevation of privilege issue exists because the software does not properly enforce user privileges associated with a Certificate dialog. This could allow an unauthenticated attacker to escalate privileges on a Windows host without requiring any privilege on the target system. The attacker can exploit this by triggering a security alert with a self-signed SSL certificate, then using the View Certificate option to export the certificate and open Explorer as SYSTEM, ultimately launching cmd.exe as SYSTEM.

Recommendations For ManageEngine ADSelfService Plus versions prior to build 6003, update to build 6003 or later to resolve the issue. As a temporary workaround, consider restricting access to the self-service option on the Windows login screen to minimize the risk of exploitation. Additionally, restrict the ability to export certificates and limit access to the Explorer application to prevent an attacker from launching cmd.exe as SYSTEM.