Cyber Security News

Zohocorp ManageEngine ADAudit Plus SQL Injection Vulnerability

Zohocorp, the company behind ManageEngine, has released a security update addressing a critical SQL injection vulnerability in its ADAudit Plus software.

The flaw, identified as CVE-2024-49574, affects all builds of ADAudit Plus before version 8123 and has been classified as high severity.

The vulnerability was resolved with the release of version 8123 on November 8, 2024.

The SQL injection vulnerability was discovered in ADAudit Plus, a solution widely used for Active Directory auditing and monitoring.

The flaw was found in the software’s report generation feature, which could be exploited by an authenticated attacker.

Maximizing Cybersecurity ROI: Expert Tips for SME & MSP Leaders - Attend Free Webinar

SQL Injection Vulnerability (CVE-2024-49574)

The vulnerability, CVE-2024-49574, allowed an attacker with authenticated access to the system to execute arbitrary SQL queries.

By exploiting this flaw, an adversary could potentially access or manipulate database table entries and extract sensitive information from the database.

This posed a significant security risk to organizations using ADAudit Plus for monitoring their Active Directory environments.

According to a report from ManageEngine, the impact of this vulnerability is particularly concerning due to its potential to be leveraged for unauthorized database access.

Once exploited, the attacker could retrieve, modify, or delete critical audit data, undermining the integrity of Active Directory monitoring and potentially leading to further security breaches.

Zohocorp has urged all users of ADAudit Plus to immediately update to build 8123, which fixes the vulnerability.

The update can be applied using the service pack available from the official website or through the product’s update mechanism.

To mitigate the risk, users should upgrade their ADAudit Plus instance to the latest build (8123).

The update process is straightforward and can be done using the service pack provided by ManageEngine.

This vulnerability was identified and reported internally by the Zohocorp security team.

This update is crucial for organizations relying on ADAudit Plus for their security monitoring, and Zohocorp continues to emphasize the importance of maintaining up-to-date software to avoid exploitation of known vulnerabilities.

Simplify and speed up Threat Analysis Workflow by Auto-detonating Cyber Attacks in a Malware sandbox

Divya

Divya is a Senior Journalist at GBhackers covering Cyber Attacks, Threats, Breaches, Vulnerabilities and other happenings in the cyber world.

Recent Posts

New VIPKeyLogger Via Weaponized Office Documenrs Steals Login Credentials

The VIPKeyLogger infostealer, exhibiting similarities to the Snake Keylogger, is actively circulating through phishing campaigns. …

2 hours ago

INTERPOL Urges to End ‘Pig Butchering’ & Replaces With “Romance Baiting”

INTERPOL has called for the term "romance baiting" to replace "pig butchering," a phrase widely…

2 hours ago

New I2PRAT Malware Using encrypted peer-to-peer communication to Evade Detections

Cybersecurity experts are sounding the alarm over a new strain of malware dubbed "I2PRAT," which…

3 hours ago

Earth Koshchei Employs RDP Relay, Rogue RDP server in Server Attacks

 A new cyber campaign by the advanced persistent threat (APT) group Earth Koshchei has brought…

4 hours ago

Careto – A legendary Threat Group Targets Windows By Deploy Microphone Recorder And Steal Files

Recent research has linked a series of cyberattacks to The Mask group, as one notable…

5 hours ago

RiseLoader Attack Windows By Employed A VMProtect To Drop Multiple Malware Families

RiseLoader, a new malware family discovered in October 2024, leverages a custom TCP-based binary protocol…

5 hours ago