Vulnerability identifier: #VU101747
Vulnerability risk: Medium
CVSSv4.0: 6.3 [CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID:
CWE-ID:
CWE-749
Exploitation vector: Network
Exploit availability: No
Vulnerable software:
ManageEngine Analytics Plus
Server applications /
Other server solutions
Vendor: Zoho Corporation
Description
The vulnerability allows a remote user to escalate privileges on the system.
The vulnerability exists due to exposed dangerous method or function within the implementation of the getOAToken action, which leads to security restrictions bypass and privilege escalation.
Mitigation
Install updates from vendor's website.
Vulnerable software versions
ManageEngine Analytics Plus: before 6100
External links
https://www.manageengine.com/analytics-plus/CVE-2024-52323.html
https://www.zerodayinitiative.com/advisories/ZDI-24-1676/
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.