Juniper Networks
Solutions
Products & Services
Company
Partners
Support
Education

Signature Detail

Security Intelligence Center
Signatures
Print

This site is deprecated. Please CLICK HERE for latest updates

Short Name

 HTTP:INFO-LEAK:CVE-2018-18980XE

Severity

 Minor

Recommended

 Yes

Recommended Action

 Drop

Category

 HTTP

Keywords

 Zoho ManageEngine OpManager BusinessViewFlashImpl handleBVAction CVE-2018-18980 XXE Injection Information Disclosure

Release Date

 2019/02/25

Update Number

 3145

Supported Platforms

 idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+

HTTP: Zoho ManageEngine OpManager BusinessViewFlashImpl handleBVAction CVE-2018-18980 XXE Injection Information Disclosure


This signature detects attempts to exploit a known vulnerability against Zoho ManageEngine OpManager BusinessViewFlashImpl. Successful exploitation could allow the attacker to read arbitrary files from the target system.

Extended Description

An XML External Entity injection (XXE) vulnerability exists in Zoho ManageEngine Network Configuration Manager and OpManager before 12.3.214 via the RequestXML parameter in a /devices/ProcessRequest.do GET request. For example, the attacker can trigger the transmission of local files to an arbitrary remote FTP server.

Affected Products

  • Zohocorp manageengine_network_configuration_manager 11.0
  • Zohocorp manageengine_opmanager -
  • Zohocorp manageengine_opmanager 11.4
  • Zohocorp manageengine_opmanager 11.5
  • Zohocorp manageengine_opmanager 12.2
  • Zohocorp manageengine_opmanager 12.3

References

  • CVE: CVE-2018-18980
  • URL: https://www.manageengine.com/network-monitoring/help/read-me.html

Site Map
RSS Feeds
Careers
Accessibility
Feedback
Privacy Policy
Legal Notices
Copyright © 1999-2010 Juniper Networks, Inc. All rights reserved.
Help
|
My Account
|
Log Out