Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2019-12133

Multiple Zoho ManageEngine products suffer from local privilege escalation due to improper permissions for the %SYSTEMDRIVE%\ManageEngine directory and its sub-folders. Moreover, the services associated with said products try to execute binaries such as sc.exe from the current directory upon system start. This will effectively allow non-privileged users to escalate privileges to NT AUTHORITY\SYSTEM. This affects Desktop Central 10.0.380, EventLog Analyzer 12.0.2, ServiceDesk Plus 10.0.0, SupportCenter Plus 8.1, O365 Manager Plus 4.0, Mobile Device Manager Plus 9.0.0, Patch Connect Plus 9.0.0, Vulnerability Manager Plus 9.0.0, Patch Manager Plus 9.0.0, OpManager 12.3, NetFlow Analyzer 11.0, OpUtils 11.0, Network Configuration Manager 11.0, FireWall 12.0, Key Manager Plus 5.6, Password Manager Pro 9.9, Analytics Plus 1.0, and Browser Security Plus.

Published

2019-06-18T22:15:12.027

Last Modified

2024-11-21T04:22:17.113

Status

Modified

Source

[email protected]

Severity

CVSSv3.0: 7.8 (HIGH)

CVSSv2 Vector

AV:L/AC:L/Au:N/C:C/I:C/A:C

Access Vector: LOCAL
Access Complexity: LOW
Authentication: NONE
Confidentiality Impact: COMPLETE
Integrity Impact: COMPLETE
Availability Impact: COMPLETE

Exploitability Score

3.9

Impact Score

10.0

Weaknesses

Type: Primary
CWE-427
CWE-732

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	zohocorp	manageengine_analytics_plus	1.0	Yes
Application	zohocorp	manageengine_browser_security_plus	-	Yes
Application	zohocorp	manageengine_desktop_central	10.0.380	Yes
Application	zohocorp	manageengine_eventlog_analyzer	12.0.2	Yes
Application	zohocorp	manageengine_firewall	12.0	Yes
Application	zohocorp	manageengine_key_manager_plus	5.6	Yes
Application	zohocorp	manageengine_mobile_device_manager_plus	9.0.0	Yes
Application	zohocorp	manageengine_netflow_analyzer	11.0	Yes
Application	zohocorp	manageengine_network_configuration_manager	11.0	Yes
Application	zohocorp	manageengine_o365_manager_plus	4.0	Yes
Application	zohocorp	manageengine_opmanager	12.3	Yes
Application	zohocorp	manageengine_oputils	11.0	Yes
Application	zohocorp	manageengine_password_manager_pro	9.9	Yes
Application	zohocorp	manageengine_patch_connect_plus	9.0.0	Yes
Application	zohocorp	manageengine_patch_manager_plus	9.0.0	Yes
Application	zohocorp	manageengine_servicedesk_plus	10.0.0	Yes
Application	zohocorp	manageengine_supportcenter_plus	8.1	Yes
Application	zohocorp	manageengine_vulnerability_manager_plus	9.0.0	Yes

References

https://github.com/active-labs/Advisories/blob/master/2019/ACTIVE-2019-007.md ([email protected])
https://www.manageengine.com/products/desktop-central/elevation-of-privilege-vulnerability.html Vendor Advisory ([email protected])
https://github.com/active-labs/Advisories/blob/master/2019/ACTIVE-2019-007.md (af854a3a-2127-422b-91ae-364da2661108)
https://www.manageengine.com/products/desktop-central/elevation-of-privilege-vulnerability.html Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)