PT-2021-13793 · Manageengine · Manageengine Log360

Published

2021-11-01

Updated

2022-07-12

CVE-2021-20136

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions: ManageEngine Log360 versions prior to 5235

Description: The issue is related to improper access control, allowing an unauthenticated remote attacker to send a specially crafted message to change the backend database to an attacker-controlled one and force a restart. This can be leveraged for remote code execution by replacing files executed on startup.

Recommendations: For versions prior to 5235, update to version 5235 or later to resolve the issue. As a temporary workaround, consider restricting access to the database configuration to minimize the risk of exploitation.

Exploit

Fix

Missing Authentication

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-306

Related Identifiers

CVE-2021-20136

Affected Products

Manageengine Log360

PT-2021-13793 · Manageengine · Manageengine Log360

CVE-2021-20136

Weakness Enumeration

Related Identifiers

Affected Products

References · 4