Lucene search

K
nessusThis script is Copyright (C) 2021-2024 and is owned by Tenable, Inc. or an Affiliate thereof.MANAGEENGINE_EVENTLOG_ANALYZER_CVE-2021-40539.NBIN
HistoryOct 04, 2021 - 12:00 a.m.

ManageEngine EventLog Analyzer < Build 12201 REST API Restriction Bypass RCE

2021-10-0400:00:00
This script is Copyright (C) 2021-2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
296

The ManageEngine EventLog Analyzer running on the remote host is affected by a security restriction bypass vulnerability due to improper validation of user-supplied data. An unauthenticated, remote attacker can exploit this, via a specially crafted message, to execute arbitrary code on the remote host.

Binary data manageengine_eventlog_analyzer_cve-2021-40539.nbin
Related for MANAGEENGINE_EVENTLOG_ANALYZER_CVE-2021-40539.NBIN