Vulnerability Details CVE-2018-7890
A remote code execution issue was discovered in Zoho ManageEngine Applications Manager before 13.6 (build 13640). The publicly accessible testCredential.do endpoint takes multiple user inputs and validates supplied credentials by accessing a specified system. This endpoint calls several internal classes, and then executes a PowerShell script. If the specified system is OfficeSharePointServer, then the username and password parameters to this script are not validated, leading to Command Injection.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.876
EPSS Ranking 99.4%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 10.0
References
- http://www.securityfocus.com/bid/103358
- https://github.com/rapid7/metasploit-framework/pull/9684
- https://pentest.blog/advisory-manageengine-applications-manager-remote-code-execution-sqli-and/
- https://pitstop.manageengine.com/portal/community/topic/security-vulnerability-issues-fixed-upgrade-to-the-latest-version-of-applications-manager
- https://www.exploit-db.com/exploits/44274/
- https://www.manageengine.com/products/applications_manager/security-updates/security-updates-cve-2018-7890.html
- http://www.securityfocus.com/bid/103358
- https://github.com/rapid7/metasploit-framework/pull/9684
- https://pentest.blog/advisory-manageengine-applications-manager-remote-code-execution-sqli-and/
- https://pitstop.manageengine.com/portal/community/topic/security-vulnerability-issues-fixed-upgrade-to-the-latest-version-of-applications-manager
- https://www.exploit-db.com/exploits/44274/
- https://www.manageengine.com/products/applications_manager/security-updates/security-updates-cve-2018-7890.html
Products affected by CVE-2018-7890
-
cpe:2.3:a:zohocorp:manageengine_applications_manager:11.0
-
cpe:2.3:a:zohocorp:manageengine_applications_manager:11.1
-
cpe:2.3:a:zohocorp:manageengine_applications_manager:11.2
-
cpe:2.3:a:zohocorp:manageengine_applications_manager:11.3
-
cpe:2.3:a:zohocorp:manageengine_applications_manager:11.4
-
cpe:2.3:a:zohocorp:manageengine_applications_manager:11.5
-
cpe:2.3:a:zohocorp:manageengine_applications_manager:11.6
-
cpe:2.3:a:zohocorp:manageengine_applications_manager:11.7
-
cpe:2.3:a:zohocorp:manageengine_applications_manager:11.8
-
cpe:2.3:a:zohocorp:manageengine_applications_manager:11.9
-
cpe:2.3:a:zohocorp:manageengine_applications_manager:12.0
-
cpe:2.3:a:zohocorp:manageengine_applications_manager:12.1
-
cpe:2.3:a:zohocorp:manageengine_applications_manager:12.2
-
cpe:2.3:a:zohocorp:manageengine_applications_manager:12.3
-
cpe:2.3:a:zohocorp:manageengine_applications_manager:12.4
-
cpe:2.3:a:zohocorp:manageengine_applications_manager:12.5
-
cpe:2.3:a:zohocorp:manageengine_applications_manager:12.6
-
cpe:2.3:a:zohocorp:manageengine_applications_manager:12.7
-
cpe:2.3:a:zohocorp:manageengine_applications_manager:12.8
-
cpe:2.3:a:zohocorp:manageengine_applications_manager:12.9
-
cpe:2.3:a:zohocorp:manageengine_applications_manager:13
-
cpe:2.3:a:zohocorp:manageengine_applications_manager:13.0
-
cpe:2.3:a:zohocorp:manageengine_applications_manager:13.1
-
cpe:2.3:a:zohocorp:manageengine_applications_manager:13.2
-
cpe:2.3:a:zohocorp:manageengine_applications_manager:13.3
-
cpe:2.3:a:zohocorp:manageengine_applications_manager:13.4
-
cpe:2.3:a:zohocorp:manageengine_applications_manager:13.5