ManageEngine ADAudit Plus - XML External Entity Injection (CVE-2022-28219)
- Severity
- CVSSv3 Score
- 9.8
- Exploitable with Sniper
- No
- Vulnerability description
ManageEngine AdAudit Plus server is vulnerable to CVE-2022-28219, a XML External Entity Injection (XXE) vulnerability, affecting the
/api/agent/tabs/agentDataendpoint. The root cause of this vulnerability consists of the improper configuration of XML parser, leading to a server-side request forgery (SSRF).- Risk description
The risk exists that a remote unauthenticated attacker can include malicious content or access sensitive information.
- Recommendation
Upgrade the ManageEngine ADAudit Plus to a version higher than 7060.
- References
https://nvd.nist.gov/vuln/detail/CVE-2022-28219
https://www.manageengine.com/products/active-directory-audit/cve-2022-28219.html
- Detectable with
- Network Scanner
- Vuln date
- May 2022
- Published at
- Updated at
- Software Type
- Active Directory Auditing Tool
- Vendor
- ManageEngine
- Product
- ADAudit Plus
- Codename
- Not available