Zohocorp, the company behind ManageEngine, has released a security update addressing a critical SQL injection vulnerability in its ADAudit Plus software.
The flaw, identified as CVE-2024-49574, affects all builds of ADAudit Plus before version 8123 and has been classified as high severity.
The vulnerability was resolved with the release of version 8123 on November 8, 2024.
The SQL injection vulnerability was discovered in ADAudit Plus, a solution widely used for Active Directory auditing and monitoring.
The flaw was found in the software’s report generation feature, which could be exploited by an authenticated attacker.
Maximizing Cybersecurity ROI: Expert Tips for SME & MSP Leaders - Attend Free Webinar
SQL Injection Vulnerability (CVE-2024-49574)
The vulnerability, CVE-2024-49574, allowed an attacker with authenticated access to the system to execute arbitrary SQL queries.
By exploiting this flaw, an adversary could potentially access or manipulate database table entries and extract sensitive information from the database.
This posed a significant security risk to organizations using ADAudit Plus for monitoring their Active Directory environments.
According to a report from ManageEngine, the impact of this vulnerability is particularly concerning due to its potential to be leveraged for unauthorized database access.
Once exploited, the attacker could retrieve, modify, or delete critical audit data, undermining the integrity of Active Directory monitoring and potentially leading to further security breaches.
Zohocorp has urged all users of ADAudit Plus to immediately update to build 8123, which fixes the vulnerability.
The update can be applied using the service pack available from the official website or through the product’s update mechanism.
To mitigate the risk, users should upgrade their ADAudit Plus instance to the latest build (8123).
The update process is straightforward and can be done using the service pack provided by ManageEngine.
This vulnerability was identified and reported internally by the Zohocorp security team.
This update is crucial for organizations relying on ADAudit Plus for their security monitoring, and Zohocorp continues to emphasize the importance of maintaining up-to-date software to avoid exploitation of known vulnerabilities.
Simplify and speed up Threat Analysis Workflow by Auto-detonating Cyber Attacks in a Malware sandbox
