PT-2021-3766 · Zoho · Zoho Manageengine Assetexplorer

David Wells

Published

2021-07-19

Updated

2021-07-28

CVE-2021-20109

CVSS v2.0

7.8

High

Vector

AV:N/AC:L/Au:N/C:N/I:C/A:N

Name of the Vulnerable Software and Affected Versions ManageEngine AssetExplorer (affected versions not specified)

Description The issue is related to the Asset Explorer agent not validating HTTPS certificates, allowing an attacker on the network to send a NEWSCAN request to a listening agent and receive the agent's HTTP request verifying its authtoken. In the AEAgent.cpp file, the agent is vulnerable to a Heap Overflow if the POST payload response is too large. The POST payload response is converted to Unicode using the vswprintf function and written to a buffer that is only 0x2000 bytes big. If the POST payload is larger, a heap overflow will occur.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Improper Certificate Validation

Memory Corruption

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-295CWE-787

Related Identifiers

BDU:2021-04021

CVE-2021-20109

Affected Products

Zoho Manageengine Assetexplorer

PT-2021-3766 · Zoho · Zoho Manageengine Assetexplorer

CVE-2021-20109

Weakness Enumeration

Related Identifiers

Affected Products

References · 10