virus logo Intrusion Prevention

ManageEngine.OpManager.getObjectData.Insecure.Deserialization

description-logoDescription

This indicates an attack attempt to exploit an Insecure Deserialization Vulnerability in Zoho Corporation ManageEngine OpManager.
The vulnerability is due to improper validation of user submitted serialized objects in the servlet handling communication between central and probe servers. A remote, authenticated attacker could exploit this vulnerability by sending a crafted request to the target server. Successful exploitation could result in arbitrary code execution under the security context of SYSTEM.

affected-products-logoAffected Products

Zoho Corporation ManageEngine OpManager prior to 126324

Impact logoImpact

System Compromise: Remote attackers can gain control of vulnerable systems.

recomended-action-logoRecommended Actions

Apply the most recent upgrade or patch from the vendor.
https://www.manageengine.com/network-monitoring/security-updates/cve-2023-31099.html

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date Version Detail
2023-08-09 25.618 Name:Zoho.
ManageEngine.
OM.
getObjectData.
Insecure.
Deserialization:ManageEngine.
OpManager.
getObjectData.
Insecure.
Deserialization
2023-06-26 24.589 Default_action:pass:drop
2023-06-06 23.571
ID 53120
Created May 30, 2023
Updated Aug 08, 2023
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon
CVE ID CVE-2023-31099
Exploit Prediction Score 0.24%
Default Action drop
Active
Affected OS Windows
Affected App Other