virus logo Intrusion Prevention

ManageEngine.ADSelfService.Plus.Password.Command.Injection

description-logoDescription

This indicates an attack attempt to exploit a Command Injection Vulnerability in Zoho Corporation ManageEngine ADSelfService Plus.
This vulnerability is due to improper input sanitization while changing a user's password. A remote, unauthenticated attacker could exploit this vulnerability by sending a crafted request to a vulnerable server. Successful exploitation could result in arbitrary command execution with privileges of the web server on the target system.

affected-products-logoAffected Products

Zoho Corporation ManageEngine ADSelfService Plus prior to build 6105

Impact logoImpact

System Compromise: Remote attackers can gain control of vulnerable systems.

recomended-action-logoRecommended Actions

Apply the most recent upgrade or patch from the vendor.
https://www.manageengine.com/products/self-service-password/release-notes.html#6102

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date Version Detail
2023-08-07 25.615 Name:Zoho.
ManageEngine.
ADSelfService.
Plus.
Password.
Command.
Injection:ManageEngine.
ADSelfService.
Plus.
Password.
Command.
Injection
2021-09-22 18.163 Default_action:pass:drop
2021-07-20 18.123
ID 50583
Created Jul 12, 2021
Updated Aug 03, 2023
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon
CVE ID CVE-2021-28958
Exploit Prediction Score 2.12%
Default Action drop
Active
Affected OS Windows, Linux
Affected App Other