Contact us

Solutions

Featured solutions AI Campus and branch Data center WAN Security Service provider Cloud operator Industries

Services

Services

Take me to HPE.com

HTTP: Zoho ManageEngine ServiceDesk Plus Custom Schedules Arbitrary Command Execution

This signature detects attempts to exploit a known vulnerability against Zoho ManageEngine. A successful attack can lead to arbitrary code execution.

Extended Description

Zoho ManageEngine ADSelfService Plus through 6101 is vulnerable to unauthenticated Remote Code Execution while changing the password.

Affected Products

Zohocorp manageengine_adselfservice_plus

References

CVE: CVE-2021-28958

URL: https://www.manageengine.com/products/self-service-password/release-notes.html#6102

Short Name

HTTP:CTS:ZOHO-MNGENGE-SDP-CE

Severity

Major

Recommended

False

Recommended Action

None

Category

HTTP

Keywords

Arbitrary CVE-2021-28958 Command Custom Execution ManageEngine Plus Schedules ServiceDesk Zoho

Release Date

07/13/2021

Supported Platforms

srx-branch-12.3

srx-19.3

srx-branch-19.3

vsrx3bsd-19.2

srx-branch-19.4

vsrx-19.4

mx-12.3

mx-19.4

vmx-19.4

mx-19.3

vsrx3bsd-19.4

srx-19.4

vsrx-12.3

vmx-19.3

vsrx-19.2

srx-12.3

Sigpack Version

3400

False Positive

Rarely

Vendors

Zohocorp

CVSS Score

7.5