Saturday, December 7, 2024
HomeCVE/vulnerabilityZohocorp ManageEngine ADAudit Plus SQL Injection Vulnerability

Zohocorp ManageEngine ADAudit Plus SQL Injection Vulnerability

Published on

SIEM as a Service

Zohocorp, the company behind ManageEngine, has released a security update addressing a critical SQL injection vulnerability in its ADAudit Plus software.

The flaw, identified as CVE-2024-49574, affects all builds of ADAudit Plus before version 8123 and has been classified as high severity.

The vulnerability was resolved with the release of version 8123 on November 8, 2024.

- Advertisement - SIEM as a Service

The SQL injection vulnerability was discovered in ADAudit Plus, a solution widely used for Active Directory auditing and monitoring.

The flaw was found in the software’s report generation feature, which could be exploited by an authenticated attacker.

Maximizing Cybersecurity ROI: Expert Tips for SME & MSP Leaders - Attend Free Webinar

SQL Injection Vulnerability (CVE-2024-49574)

The vulnerability, CVE-2024-49574, allowed an attacker with authenticated access to the system to execute arbitrary SQL queries.

By exploiting this flaw, an adversary could potentially access or manipulate database table entries and extract sensitive information from the database.

This posed a significant security risk to organizations using ADAudit Plus for monitoring their Active Directory environments.

According to a report from ManageEngine, the impact of this vulnerability is particularly concerning due to its potential to be leveraged for unauthorized database access.

Once exploited, the attacker could retrieve, modify, or delete critical audit data, undermining the integrity of Active Directory monitoring and potentially leading to further security breaches.

Zohocorp has urged all users of ADAudit Plus to immediately update to build 8123, which fixes the vulnerability.

The update can be applied using the service pack available from the official website or through the product’s update mechanism.

To mitigate the risk, users should upgrade their ADAudit Plus instance to the latest build (8123).

The update process is straightforward and can be done using the service pack provided by ManageEngine.

This vulnerability was identified and reported internally by the Zohocorp security team.

This update is crucial for organizations relying on ADAudit Plus for their security monitoring, and Zohocorp continues to emphasize the importance of maintaining up-to-date software to avoid exploitation of known vulnerabilities.

Simplify and speed up Threat Analysis Workflow by Auto-detonating Cyber Attacks in a Malware sandbox

Divya
Divya
Divya is a Senior Journalist at GBhackers covering Cyber Attacks, Threats, Breaches, Vulnerabilities and other happenings in the cyber world.

Latest articles

DaMAgeCard Attack – New SD Card Attack Lets Hackers Directly Access System Memory

Security researchers have identified a significant vulnerability dubbed "DaMAgeCard Attack" in the new SD...

Deloitte Denies Breach, Claims Only Single System Affected

Ransomware group Brain Cipher claimed to have breached Deloitte UK and threatened to publish...

Top Five Industries Most Frequently Targeted by Phishing Attacks

Researchers analyzed phishing attacks from Q3 2023 to Q3 2024 and identified the top...

Russian BlueAlpha APT Exploits Cloudflare Tunnels to Distribute Custom Malware

BlueAlpha, a Russian state-sponsored group, is actively targeting Ukrainian individuals and organizations by using...

API Security Webinar

72 Hours to Audit-Ready API Security

APIs present a unique challenge in this landscape, as risk assessment and mitigation are often hindered by incomplete API inventories and insufficient documentation.

Join Vivek Gopalan, VP of Products at Indusface, in this insightful webinar as he unveils a practical framework for discovering, assessing, and addressing open API vulnerabilities within just 72 hours.

Discussion points

API Discovery: Techniques to identify and map your public APIs comprehensively.
Vulnerability Scanning: Best practices for API vulnerability analysis and penetration testing.
Clean Reporting: Steps to generate a clean, audit-ready vulnerability report within 72 hours.

More like this

DaMAgeCard Attack – New SD Card Attack Lets Hackers Directly Access System Memory

Security researchers have identified a significant vulnerability dubbed "DaMAgeCard Attack" in the new SD...

Deloitte Denies Breach, Claims Only Single System Affected

Ransomware group Brain Cipher claimed to have breached Deloitte UK and threatened to publish...

Top Five Industries Most Frequently Targeted by Phishing Attacks

Researchers analyzed phishing attacks from Q3 2023 to Q3 2024 and identified the top...