Main Vulnerability Database Exploits ID:5764 - Exploit for Improper access control in Zoho ManageEngine EventLog Analyzer - CVE-2019-19774

ID:5764 - Exploit for Improper access control in Zoho ManageEngine EventLog Analyzer - CVE-2019-19774

Published: June 17, 2021

Vulnerability identifier: #VU25643

Vulnerability risk: Low

CVE-ID: CVE-2019-19774

CWE-ID: CWE-284

Exploitation vector: Remote access

Vulnerable software:
Zoho ManageEngine EventLog Analyzer

Link to public exploit:

https://www.exploit-db.com/exploits/48119/

Vulnerability description

The vulnerability allows a remote attacker to gain unauthorized access to otherwise restricted functionality.

The vulnerability exists due to improper access restrictions. A remote attacker can bypass implemented security restrictions by running "select hostdetails from hostdetails" at the /event/runquery.do endpoint and recover the MD5 hashes of the accounts used to authenticate the ManageEngine platform to the managed machines on the network (most often administrative accounts).

Remediation

Install updates from vendor's website.

ID:5764 - Exploit for Improper access control in Zoho ManageEngine EventLog Analyzer - CVE-2019-19774

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human