ID
VAR-202208-0863
CVE
CVE-2022-36923
TITLE
Zoho Corporation of ManageEngine Firewall Analyzer and ManageEngine NetFlow Analyzer Vulnerability in handling exceptional conditions in
Trust: 0.8
DESCRIPTION
Zoho ManageEngine OpManager, OpManager Plus, OpManager MSP, Network Configuration Manager, NetFlow Analyzer, Firewall Analyzer, and OpUtils before 2022-07-27 through 2022-07-28 (125657, 126002, 126104, and 126118) allow unauthenticated attackers to obtain a user's API key, and then access external APIs. Zoho Corporation of ManageEngine Firewall Analyzer and ManageEngine NetFlow Analyzer Exists in a vulnerability in handling exceptional conditions.Information may be obtained. This vulnerability allows remote attackers to bypass authentication on affected installations of ManageEngine Network Configuration Manager. Authentication is not required to exploit this vulnerability.The specific flaw exists within the getUserAPIKey function. The issue results from the lack of authentication prior to allowing access to functionality. An attacker can leverage this vulnerability to bypass authentication on the system. ZOHO ManageEngine OpManager etc. are all products of ZOHO India. ZOHO ManageEngine OpManager is a comprehensive network monitoring software. ZOHO ManageEngine OpManager Plus is an IT operations management solution for Windows and Linux systems. ZOHO ManageEngine OpManager MSP is an easy-to-use network and server management software
Trust: 4.32
AFFECTED PRODUCTS
| vendor: | manageengine | model: | opmanager | scope: | - | version: | - | Trust: 1.4 |
| vendor: | zohocorp | model: | manageengine opmanager msp | scope: | eq | version: | 12.6 | Trust: 1.0 |
| vendor: | zohocorp | model: | manageengine network configuration manager | scope: | eq | version: | 12.6 | Trust: 1.0 |
| vendor: | zohocorp | model: | manageengine opmanager msp | scope: | eq | version: | 12.5 | Trust: 1.0 |
| vendor: | zohocorp | model: | manageengine oputils | scope: | eq | version: | 12.6 | Trust: 1.0 |
| vendor: | zohocorp | model: | manageengine netflow analyzer | scope: | eq | version: | 12.5 | Trust: 1.0 |
| vendor: | zohocorp | model: | manageengine firewall analyzer | scope: | eq | version: | 12.5 | Trust: 1.0 |
| vendor: | zohocorp | model: | manageengine opmanager plus | scope: | eq | version: | 12.5 | Trust: 1.0 |
| vendor: | zohocorp | model: | manageengine netflow analyzer | scope: | eq | version: | 12.6 | Trust: 1.0 |
| vendor: | zohocorp | model: | manageengine opmanager plus | scope: | eq | version: | 12.6 | Trust: 1.0 |
| vendor: | zohocorp | model: | manageengine opmanager | scope: | eq | version: | 12.5 | Trust: 1.0 |
| vendor: | zohocorp | model: | manageengine firewall analyzer | scope: | eq | version: | 12.6 | Trust: 1.0 |
| vendor: | zohocorp | model: | manageengine opmanager | scope: | eq | version: | 12.6 | Trust: 1.0 |
| vendor: | zohocorp | model: | manageengine network configuration manager | scope: | eq | version: | 12.5 | Trust: 1.0 |
| vendor: | zohocorp | model: | manageengine oputils | scope: | eq | version: | 12.5 | Trust: 1.0 |
| vendor: | zoho | model: | manageengine netflow analyzer | scope: | - | version: | - | Trust: 0.8 |
| vendor: | zoho | model: | manageengine firewall analyzer | scope: | - | version: | - | Trust: 0.8 |
| vendor: | manageengine | model: | netflow analyzer | scope: | - | version: | - | Trust: 0.7 |
| vendor: | manageengine | model: | network configuration manager | scope: | - | version: | - | Trust: 0.7 |
CVSS
SEVERITY | CVSSV2 | CVSSV3 | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
|
PROBLEMTYPE DATA
| problemtype: | CWE-755 | Trust: 1.1 |
| problemtype: | Improper handling in exceptional conditions (CWE-755) [NVD evaluation ] | Trust: 0.8 |
THREAT TYPE
remote
Trust: 0.6
TYPE
other
Trust: 0.6
PATCH
| title: | ManageEngine has issued an update to correct this vulnerability. | url: | https://www.manageengine.com/itom/advisory/cve-2022-36923.html | Trust: 2.8 |
| title: | Multiple ZOHO ManageEngine Product security vulnerabilities | url: | http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=204578 | Trust: 0.6 |
EXTERNAL IDS
| db: | NVD | id: | CVE-2022-36923 | Trust: 6.2 |
| db: | JVNDB | id: | JVNDB-2022-014729 | Trust: 0.8 |
| db: | ZDI_CAN | id: | ZDI-CAN-18088 | Trust: 0.7 |
| db: | ZDI | id: | ZDI-22-1122 | Trust: 0.7 |
| db: | ZDI_CAN | id: | ZDI-CAN-18089 | Trust: 0.7 |
| db: | ZDI | id: | ZDI-22-1121 | Trust: 0.7 |
| db: | ZDI_CAN | id: | ZDI-CAN-18087 | Trust: 0.7 |
| db: | ZDI | id: | ZDI-22-1120 | Trust: 0.7 |
| db: | ZDI_CAN | id: | ZDI-CAN-17698 | Trust: 0.7 |
| db: | ZDI | id: | ZDI-22-1119 | Trust: 0.7 |
| db: | CNNVD | id: | CNNVD-202208-2747 | Trust: 0.7 |
| db: | VULHUB | id: | VHN-427594 | Trust: 0.1 |
| db: | VULMON | id: | CVE-2022-36923 | Trust: 0.1 |
REFERENCES
| url: | https://www.manageengine.com/itom/advisory/cve-2022-36923.html | Trust: 5.4 |
| url: | https://nvd.nist.gov/vuln/detail/cve-2022-36923 | Trust: 0.8 |
| url: | https://cxsecurity.com/cveshow/cve-2022-36923/ | Trust: 0.6 |
| url: | https://nvd.nist.gov | Trust: 0.1 |
CREDITS
Anonymous
Trust: 2.8
SOURCES
| db: | ZDI | id: | ZDI-22-1122 |
| db: | ZDI | id: | ZDI-22-1121 |
| db: | ZDI | id: | ZDI-22-1120 |
| db: | ZDI | id: | ZDI-22-1119 |
| db: | VULHUB | id: | VHN-427594 |
| db: | VULMON | id: | CVE-2022-36923 |
| db: | JVNDB | id: | JVNDB-2022-014729 |
| db: | CNNVD | id: | CNNVD-202208-2747 |
| db: | NVD | id: | CVE-2022-36923 |
LAST UPDATE DATE
2024-08-14T14:37:21.646000+00:00
SOURCES UPDATE DATE
| db: | ZDI | id: | ZDI-22-1122 | date: | 2022-08-18T00:00:00 |
| db: | ZDI | id: | ZDI-22-1121 | date: | 2022-08-18T00:00:00 |
| db: | ZDI | id: | ZDI-22-1120 | date: | 2022-08-18T00:00:00 |
| db: | ZDI | id: | ZDI-22-1119 | date: | 2022-08-18T00:00:00 |
| db: | VULHUB | id: | VHN-427594 | date: | 2022-08-16T00:00:00 |
| db: | VULMON | id: | CVE-2022-36923 | date: | 2022-08-10T00:00:00 |
| db: | JVNDB | id: | JVNDB-2022-014729 | date: | 2023-09-21T08:08:00 |
| db: | CNNVD | id: | CNNVD-202208-2747 | date: | 2022-08-17T00:00:00 |
| db: | NVD | id: | CVE-2022-36923 | date: | 2022-08-16T16:01:19.867 |
SOURCES RELEASE DATE
| db: | ZDI | id: | ZDI-22-1122 | date: | 2022-08-18T00:00:00 |
| db: | ZDI | id: | ZDI-22-1121 | date: | 2022-08-18T00:00:00 |
| db: | ZDI | id: | ZDI-22-1120 | date: | 2022-08-18T00:00:00 |
| db: | ZDI | id: | ZDI-22-1119 | date: | 2022-08-18T00:00:00 |
| db: | VULHUB | id: | VHN-427594 | date: | 2022-08-10T00:00:00 |
| db: | VULMON | id: | CVE-2022-36923 | date: | 2022-08-10T00:00:00 |
| db: | JVNDB | id: | JVNDB-2022-014729 | date: | 2023-09-21T00:00:00 |
| db: | CNNVD | id: | CNNVD-202208-2747 | date: | 2022-08-10T00:00:00 |
| db: | NVD | id: | CVE-2022-36923 | date: | 2022-08-10T20:16:03.343 |