ManageEngine.ADManagerPlus.ProxySettings.Command.Injection
Description
This indicates an attack attempt to exploit a Command Injection Vulnerability in Zoho Corporation ManageEngine ADManager Plus.
The vulnerability is due to improper input validation when handling requests. A remote, authenticated attacker can exploit this vulnerability by sending a crafted request to the target server. Successful exploitation could allow OS command executions.
Affected Products
Zoho Corporation ManageEngine ADManager Plus prior to build 7151
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Apply the most recent upgrade or patch from the vendor.
https://www.manageengine.com/products/ad-manager/admanager-kb/cve-2022-42904.html
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |
Version Updates
Date | Version | Detail |
---|---|---|
2023-08-07 | 25.615 | Name:Zoho. ManageEngine. ADManagerPlus. ProxySettings. Command. Injection:ManageEngine. ADManagerPlus. ProxySettings. Command. Injection |
2023-01-18 | 22.478 | Default_action:pass:drop |
2023-01-05 | 22.470 |