Lucene search
This script is Copyright (C) 2023-2024 and is owned by Tenable, Inc. or an Affiliate thereof.MANAGEENGINE_FIREWALL_ANALYZER_CVE-2022-36923_DIRECT.NBINHistoryFeb 24, 2023 - 12:00 a.m.
ManageEngine Firewall Analyzer REST API Key Disclosure (CVE-2022-36923)
2023-02-2400:00:00
This script is Copyright (C) 2023-2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
26
The ManageEngine Firewall Analyzer running on the remote host is affected by an information disclosure vulnerability. An unauthenticated, remote attacker can exploit this, via a specially crafted message, to obtain a user’s API key and then access the external APIs.
Binary data manageengine_firewall_analyzer_cve-2022-36923_direct.nbin| Vendor | Product | Version | CPE |
|---|---|---|---|
| zohocorp | manageengine_firewall_analyzer | cpe:/a:zohocorp:manageengine_firewall_analyzer |
Related
nessus
nessus
zdi
zdi
prion
prion
Design/Logic Flaw
2022-08-10 20:16:00
cvelist
cvelist
CVE-2022-36923
2022-08-10 14:17:09
cve
cve
CVE-2022-36923
2022-08-10 20:16:00
Related for MANAGEENGINE_FIREWALL_ANALYZER_CVE-2022-36923_DIRECT.NBIN