ID	48988
Created	May 20, 2020
Updated	Sep 15, 2023
Severity
CVE ID	CVE-2019-8394
EPSS	96.94%
Coverage	IPS (Regular DB) IPS (Extended DB)
Default Action	drop
Active
Affected OS	Windows
Affected App	Other

Legend

Active/Available
InActive/Not Available

Database Update History

Date	Version	Detail
2023-08-03	25.614	Name:ZOHO. ManageEngine. ServiceDesk. Plus. Arbitrary. File. Upload:ManageEngine. ServiceDesk. Plus. CVE-2019-8394. File. Upload
2020-09-30	16.934	Name:Zoho. ManageEngine. ServiceDesk. Plus. Arbitrary. File. Upload:ZOHO. ManageEngine. ServiceDesk. Plus. Arbitrary. File. Upload
2020-06-01	15.854	Default_action:pass:drop
2020-05-20	15.847

Refine Search

Threat Encyclopedia

ManageEngine.ServiceDesk.Plus.CVE-2019-8394.File.Upload

Description

This indicates an attack attempt to exploit an Arbitrary File Upload vulnerability in Zohocorp ManageEngine ServiceDesk Plus.
The vulnerability is due to insufficient sanitizing of user supplied inputs in the application when handling a crafted SMTP request. An unauthenticated remote attacker may be able to exploit this to upload an arbitrary file, leading to a possible code execution condition.

Affected Products

Zoho Corporation ManageEngine ServiceDesk Plus 10.0 build 10011 and prior

Impact

System Compromise: Remote attackers can execute arbitrary code on vulnerable systems.

Recommended Actions

Apply the most recent upgrade or patch from the vendor.
https://www.manageengine.com/products/service-desk/readme.html

Protect

Detect

Respond

Recover

Identify

Network Security

Endpoint Security

Application Security

Security Operations

FortiGate

FortiClient

FortiSandBox

FortiMail

FortiADC

FortiWeb

FortiCNP

FortiNDR

FortiDeceptor

FortiEDR

FortiAnalyzer