Published: 06/03/2020 Updated: 10/07/2022

CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10

CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9

VMScore: 1000

Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

Zoho ManageEngine Desktop Central prior to 10.0.474 allows remote code execution because of deserialization of untrusted data in getChartImage in the FileStorage class. This is related to the CewolfServlet and MDMLogUploaderServlet servlets.

Vulnerable Product	Search on Vulmon	Subscribe to Product
zohocorp manageengine desktop central 10

## # This module requires Metasploit: metasploitcom/download # Current source: githubcom/rapid7/metasploit-framework ## class MetasploitModule < Msf::Exploit::Remote Rank = ExcellentRanking include Msf::Exploit::Remote::HttpClient include Msf::Exploit::Remote::AutoCheck include Msf::Exploit::CmdStager include Msf:: ...

HEY SERIAL! Author: Alyssa Rahman @ramen0x3f Created: 2021-10-27 Last Updated: 2021-12-02 Blog: wwwmandiantcom/resources/hunting-deserialization-exploits For more details on this tool and the research process behind it, check out our blog! Description Programmatically create hunting rules for deserialization exploitation with multiple keywo

This is an open source Snort rules repository

SnortRules This is an open source Snort rules repository for exploit and application detection signatures Exploit Rules: CVE-2020-0618 CVE-2020-0688 CVE-2020-1938 CVE-2020-10189 CVE-2020-3952 CVE-2020-5902 CVE-2020-1350 CVE-2020-6287, CVE-2020-6286 (SAP RECON vulnerability)

VulWiki

VulWiki 基于零组公开漏洞库如何添加新的文章先检查本地仓库是否为最新版本找到对应分类或新建分类,新建Markdown文件，文件名为漏洞标题 Markdown文件内添加漏洞详情图片保存到当前Markdown文件路径下的`resource/文件名/mdeia/` 目录，Markdown插入时使用相对路径按时间倒序在Change Log中添

CVEs enumerated by FireEye and that should be addressed to limit the effectiveness of leaked the Red Team tools CVE-2019-11510 – pre-auth arbitrary file reading from Pulse Secure SSL VPNs - CVSS 100 CVE-2020-1472 – Microsoft Active Directory escalation of privileges - CVSS 100 CVE-2018-13379 – pre-auth arbitrary file reading from Fortinet Fortigate SSL VPN

Wiki 基于零组公开漏洞库如何添加新的文章先检查本地仓库是否为最新版本找到对应分类或新建分类,新建Markdown文件，文件名为漏洞标题 Markdown文件内添加漏洞详情图片保存到当前Markdown文件路径下的`resource/文件名/mdeia/` 目录，Markdown插入时使用相对路径按时间倒序在Change Log中添加

vFeed CVEs Vulnerability Indicators that should be addressed to limit the effectiveness of the Leaked FireEye Red Team tools CVE-2019-11510 – pre-auth arbitrary file reading from Pulse Secure SSL VPNs - CVSS 100 CVE-2020-1472 – Microsoft Active Directory escalation of privileges - CVSS 100 CVE-2018-13379 – pre-auth arbitrary file reading from Fortinet Forti

Welcome to Goby Goby is a new generation network security assessment tool It can efficiently and practically scan vulnerabilities while sorting out the most complete attack surface information for a target enterprise Goby can also quickly penetrate the company intranet based on a company's vulnerabilities exposed to the Internet We strive for Goby to become a more vita

在线漏洞平台

前言基于零组公开漏洞库如何添加新的文章先检查本地仓库是否为最新版本找到对应分类或新建分类,新建Markdown文件，文件名为漏洞标题 Markdown文件内添加漏洞详情图片保存到当前Markdown文件路径下的`/resource/文件名/mdeia/` 目录，Markdown插入时使用相对路径按时间倒序在Change Log中添

前言基于零组公开漏洞库 + PeiQi文库 Change Log 2021-04-18 安天高级可持续威胁安全检测系统越权访问漏洞 2021-04-17 飞鱼星家用智能路由 cookiecgi 权限绕过 2021-04-17 Coremail邮箱系统目录穿越泄漏后台漏洞 2021-04-17 SmartBi全版本 SQl注入任意文件上传漏洞 2021-04-17 金山终端安全系统 V8 V9文件上

Middleware-Vulnerability-detection 实时更新较好用最新漏洞EXP，仅供已授权渗透测试使用 2020418项目迎来两位伙伴一起维护 @caizhuang @3ndz Apache --2019 Apache-flink 未授权访问任意 --2019 CVE-2019-0193 Apache-Solr via Velocity template RCE --20203 CVE-2019-17564 Apache-Dubbo反序列化漏洞 --

CVE、CMS、中间件漏洞检测利用合集 Since 2019-9-15

Middleware-Vulnerability-detection 2020418项目迎来两位伙伴一起维护 @caizhuang @3ND Apache --2019 Apache-flink 未授权访问任意 --2019 CVE-2019-0193 Apache Solr via Velocity template RCE --20203 CVE-2019-17564 Apache Dubbo反序列化漏洞 --20207 CVE-2020-13925 Apache Kylin 远程命令执行�

Penetration_Testing_POC 搜集有关渗透测试中用到的POC、脚本、工具、文章等姿势分享，作为笔记吧，欢迎补充。 Penetration_Testing_POC 请善用搜索[Ctrl+F]查找 IOT Device&Mobile Phone Web APP 提权辅助相关 PC tools-小工具集合文章/书籍/教程相关说明请善用搜索[Ctrl+F]查找 IOT Device&Mobile

The cheat sheet about Java Deserialization vulnerabilities

Java-Deserialization-Cheat-Sheet A cheat sheet for pentesters and researchers about deserialization vulnerabilities in various Java (JVM) serialization libraries Please, use #javadeser hash tag for tweets Table of content Java Native Serialization (binary) Overview Main talks & presentations & docs Payload generators Exploits Detect Vulnerable apps (without

渗透测试有关的POC、EXP、脚本、提权、小工具等，欢迎补充、完善---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss penetration-testing-poc csrf-webshell cobub-razor cve rce sql sql-poc poc-exp bypass oa-getshell cve-cms

公开收集所用

Compiled dataset of Java deserialization CVEs

Java-Deserialization-CVEs This is a dataset of CVEs related to Java Deserialization Since existing CVE databases do not allow for granular searches by vulnerability type and language, this list was compiled by manually searching the NIST NVD CVE database with different queries If you notice any discrepancies, contributions are very welcome! CVE ID Year CVSS 3/31 risk CV

SecBooks 各大文库公众号文章收集，部分文库使用gitbook部署；部分公众号使用杂散文章为主。使用插件 "hide-element", "back-to-top-button", "-lunr", "-search", "search-pro", "splitter" #目录自动生成插件(book sm) npm install -g gitbook-summ

PoC in GitHub 2022 CVE-2022-0185 (2022-02-11) A heap-based buffer overflow flaw was found in the way the legacy_parse_param function in the Filesystem Context functionality of the Linux kernel verified the supplied parameters length An unprivileged (in case of unprivileged user namespaces enabled, otherwise needs namespaced CAP_SYS_ADMIN privilege) local user able to open a f

PoC in GitHub 2021 CVE-2021-1056 (2021-01-07) NVIDIA GPU Display Driver for Linux, all versions, contains a vulnerability in the kernel mode layer (nvidiako) in which it does not completely honor operating system file system permissions to provide GPU device-level isolation, which may lead to denial of service or information disclosure pokerfaceSad/CVE-2021-1056 CVE-2021-

PoC in GitHub 2020 CVE-2020-0014 (2020-02-13) It is possible for a malicious application to construct a TYPE_TOAST window manually and make that window clickable This could lead to a local escalation of privilege with no additional execution privileges needed User action is needed for exploitationProduct: AndroidVersions: Android-80 Android-81 Android-9 Android-10Android

Hackers sell access to your network via remote management apps

BleepingComputer • Ionut Ilascu • 23 Sep 2020

Remote monitoring and management (RMM) software is starting to get attention from hackers as these types of tools provide access to multiple machines across the network.
At least one network access broker has been advertising access to networks of organizations in various regions of the world that use the ManageEngine Desktop Central from Zoho to manage their Windows, Linux, and Mac systems.
Some of the breached companies are attractive targets for ransomware operators, who may alr...

The Register • Gareth Corfield • 26 Mar 2020

Citrix, Cisco and Zoho-pwning APT41 attack wave seems in awfully bad taste

Proving that no good crisis ever goes to waste, Chinese government hacking crew APT41 launched a campaign that abuses vulns in Citrix Netscaler and Zoho ManageEngine, according to threat intel outfit FireEye.
As well as targeting load balancers and network management suites, the Chinese interference operatives spent three months, at the height of Wuhan's COVID-19 coronavirus outbreak, exploiting weaknesses in Cisco routers.
"This activity is one of the most widespread campaigns we ha...

The Register • Gareth Corfield • 26 Mar 2020

Citrix, Cisco and Zoho-pwning APT41 attack wave seems in awfully bad taste

Threatpost • Lindsey O'Donnell • 25 Mar 2020

Researchers warn that APT41, a notorious China-linked threat group, has targeted more than 75 organizations worldwide in “one of the broadest campaigns by a Chinese cyber-espionage actor observed in recent years.”
Between Jan. 20 and March 11, researchers observed APT41 exploiting vulnerabilities in Citrix NetScaler/ADC, Cisco routers and Zoho ManageEngine Desktop Central as part of the widespread espionage campaign. Researchers said it’s unclear if APT41 attempted exploitation en ma...

BleepingComputer • Sergiu Gatlan • 25 Mar 2020

The Chinese state-sponsored group APT41 has been at the helm of a range of attacks that used recent exploits to target security flaws in Citrix, Cisco, and Zoho appliances and devices of entities from a multitude of industry sectors spanning the globe.
It is not known if the campaign that started in January 2020 was designed to take advantage of companies having to focus on setting up everything needed by their remote workers while in COVID-19 lockdown or quarantine but, as FireEye resea...

BleepingComputer • Sergiu Gatlan • 06 Mar 2020

Web-based office suite and SaaS services provider Zoho released a security update to fix a remote code execution vulnerability found in its ManageEngine Desktop Central endpoint management solution that does not require authentication to be exploited.
helps companies like managed service providers (MSPs) to manage devices such as servers, laptops, desktops, smartphones, and tablets from a central location, and to automate frequent endpoint management routines like patch installatio...

Get Started

CVE-2020-10189

Vulnerability Summary

Most Upvoted Vulmon Research Post

Vulnerability Trend

Exploits

Github Repositories

Recent Articles

References

Vulmon Search

About

Products

Connect