Privilege Escalation in Zoho ManageEngine OpManager and Firewall Analyzer
CVE-2019-17421

7.8HIGH

Key Information:

Vendor

Zohocorp
Status
Manageengine Firewall Analyzer
Manageengine Opmanager
Vendor
CVE Published:
21 November 2019

What is CVE-2019-17421?

Incorrect file permissions on the packaged Nipper executable file in Zoho's ManageEngine OpManager and Firewall Analyzer versions 12.4.072 create a significant security risk. This flaw allows local users to gain elevated privileges by overwriting the executable with a malicious payload, potentially compromising sensitive system resources and data. Organizations using these products should immediately assess their configurations and implement necessary updates to mitigate this vulnerability.

References

https://twitter.com/va_start
x_refsource_MISC
https://blog.vastart.dev/2019/11/cve-2019-17421-privilege...
x_refsource_MISC
https://www.manageengine.com/products/firewall/security-u...
x_refsource_CONFIRM

CVSS V3.1

Score:
7.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.
CVE-2019-17421 : Privilege Escalation in Zoho ManageEngine OpManager and Firewall Analyzer