The ManageEngine Firewall Analyzer running on the remote host is affected by an information disclosure vulnerability. An unauthenticated, remote attacker can exploit this, via a specially crafted message, to obtain a user’s API key and then access the external APIs.
Binary data manageengine_firewall_analyzer_cve-2022-36923_direct.nbin
Vendor | Product | Version | CPE |
---|---|---|---|
zohocorp | manageengine_firewall_analyzer | cpe:/a:zohocorp:manageengine_firewall_analyzer |