Intrusion PreventionManageEngine.OpManager.Inventory.Reports.SQL.Injection
Description
This indicates an attack attempt to exploit an SQL Injection Vulnerability in Zoho Corporation ManageEngine OpManager.
This vulnerability is due to insufficient validation of the parameters in the HTTP requests processed by the Inventory Reports module. A remote, authenticated attacker could exploit this vulnerability by sending a web request with a malicious SQL query to the target server. Successful exploitation could lead to arbitrary SQL code execution in the security context of database service.
Affected Products
Zoho Corporation ManageEngine OpManager prior to 12.5 Build 125588 and 125603
Impact
System Compromise: Remote attackers can add, view, delete or modify data in the database of the affected application
Recommended Actions
Apply the most recent upgrade or patch from the vendor.
https://www.manageengine.com/network-monitoring/security-updates/cve-2022-27908.html
Telemetry
Coverage
| IPS (Regular DB) | |
| IPS (Extended DB) |
Version Updates
| Date | Version | Detail |
|---|---|---|
| 2023-08-09 | 25.618 | Name:Zoho. ManageEngine. OpManager. Inventory. Reports. SQL. Injection:ManageEngine. OpManager. Inventory. Reports. SQL. Injection |
| 2022-05-18 | 20.318 | Default_action:pass:drop |
| 2022-05-09 | 20.311 |
| ID | 51511 |
| Created | Apr 28, 2022 |
| Updated | Aug 08, 2023 |
| Risk |
|
| CVE ID | CVE-2022-27908 |
| Exploit Prediction Score | 0.19% |
| Default Action | drop |
| Active | |
| Affected OS | Windows, Linux |
| Affected App | Other |