HTTP: Zoho ManageEngine Applications Manager Popup_SLA.jsp sid SQL Injection
This signature detects attempts to exploit a known vulnerability against Zoho ManageEngine. A successful attack can lead to arbitrary code execution.
Extended Description
An issue was discovered in Zoho ManageEngine Applications Manager 11.0 through 14.0. An unauthenticated user can gain the authority of SYSTEM on the server due to a Popup_SLA.jsp sid SQL injection vulnerability. For example, the attacker can subsequently write arbitrary text to a .vbs file.
Affected Products
Zohocorp manageengine_applications_manager
Short Name
HTTP:SQL:INJ:CVE-2019-11448
Severity
Major
Recommended
True
Recommended Action
Drop
Category
HTTP
Keywords
Applications CVE-2019-11448 Injection ManageEngine Manager Popup_SLA.jsp SQL Zoho sid
Release Date
06/03/2019
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3337
False Positive
Unknown
Vendors
Zohocorp
CVSS Score
10.0