CVE-2014-3997

SQL injection vulnerability in the MetadataServlet servlet in ManageEngine Password Manager Pro (PMP) and Password Manager Pro Managed Service Providers (MSP) edition 5 through 7 build 7003, IT360 and IT360 Managed Service Providers (MSP) edition before 10.3.3 build 10330, and possibly other ManageEngine products, allows remote attackers or remote authenticated users to execute arbitrary SQL commands via the sv parameter to MetadataServlet.dat.
SQL Injection
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 78%
VendorProductVersion
zohocorpmanageengine_password_manager_pro
5.0
zohocorpmanageengine_password_manager_pro
5.1
zohocorpmanageengine_password_manager_pro
5.2
zohocorpmanageengine_password_manager_pro
5.3
zohocorpmanageengine_password_manager_pro
5.4
zohocorpmanageengine_password_manager_pro
6.0
zohocorpmanageengine_password_manager_pro
6.0:build6002
zohocorpmanageengine_password_manager_pro
6.1:build6104
zohocorpmanageengine_password_manager_pro
6.2
zohocorpmanageengine_password_manager_pro
6.2:build6201
zohocorpmanageengine_password_manager_pro
6.3
zohocorpmanageengine_password_manager_pro
6.4
zohocorpmanageengine_password_manager_pro
6.4:build6401
zohocorpmanageengine_password_manager_pro
6.4:build6402
zohocorpmanageengine_password_manager_pro
6.4:build6403
zohocorpmanageengine_password_manager_pro
6.4:build6404
zohocorpmanageengine_password_manager_pro
6.5
zohocorpmanageengine_password_manager_pro
6.5:build6503
zohocorpmanageengine_password_manager_pro
6.5:build6504
zohocorpmanageengine_password_manager_pro
6.5:build6505
zohocorpmanageengine_password_manager_pro
6.6:build6600
zohocorpmanageengine_password_manager_pro
6.7:build6700
zohocorpmanageengine_password_manager_pro
6.7:build6701
zohocorpmanageengine_password_manager_pro
6.8:build6800
zohocorpmanageengine_password_manager_pro
6.8:build6801
zohocorpmanageengine_password_manager_pro
6.8:build6802
zohocorpmanageengine_password_manager_pro
6.8:build6803
zohocorpmanageengine_password_manager_pro
6.9
zohocorpmanageengine_password_manager_pro
6.9:build6900
zohocorpmanageengine_password_manager_pro
6.9:build6901
zohocorpmanageengine_password_manager_pro
6.9:build6902
zohocorpmanageengine_password_manager_pro
6.9:build6903
zohocorpmanageengine_password_manager_pro
6.9:build6904
zohocorpmanageengine_password_manager_pro
7.0
zohocorpmanageengine_password_manager_pro
7.0:build7000
zohocorpmanageengine_password_manager_pro
7.0:build7001
zohocorpmanageengine_password_manager_pro
7.0:build7002
zohocorpmanageengine_password_manager_pro
7.0:build7003
zohocorpmanageengine_it360
𝑥
≤ 10.3.3
zohocorpmanageengine_it360
𝑥
≤ 10.3.3
zohocorpmanageengine_password_manager_pro
5.0
zohocorpmanageengine_password_manager_pro
5.1
zohocorpmanageengine_password_manager_pro
5.2
zohocorpmanageengine_password_manager_pro
5.3
zohocorpmanageengine_password_manager_pro
5.4
zohocorpmanageengine_password_manager_pro
6.0
zohocorpmanageengine_password_manager_pro
6.0:build6002
zohocorpmanageengine_password_manager_pro
6.1
zohocorpmanageengine_password_manager_pro
6.1:build6104
zohocorpmanageengine_password_manager_pro
6.2
zohocorpmanageengine_password_manager_pro
6.2:build6201
zohocorpmanageengine_password_manager_pro
6.3
zohocorpmanageengine_password_manager_pro
6.4
zohocorpmanageengine_password_manager_pro
6.4:build6401
zohocorpmanageengine_password_manager_pro
6.4:build6402
zohocorpmanageengine_password_manager_pro
6.4:build6403
zohocorpmanageengine_password_manager_pro
6.4:build6404
zohocorpmanageengine_password_manager_pro
6.5
zohocorpmanageengine_password_manager_pro
6.5:build6503
zohocorpmanageengine_password_manager_pro
6.5:build6504
zohocorpmanageengine_password_manager_pro
6.5:build6505
zohocorpmanageengine_password_manager_pro
6.6:build6600
zohocorpmanageengine_password_manager_pro
6.7:build6700
zohocorpmanageengine_password_manager_pro
6.7:build6701
zohocorpmanageengine_password_manager_pro
6.8:build6800
zohocorpmanageengine_password_manager_pro
6.8:build6801
zohocorpmanageengine_password_manager_pro
6.8:build6802
zohocorpmanageengine_password_manager_pro
6.8:build6803
zohocorpmanageengine_password_manager_pro
6.9
zohocorpmanageengine_password_manager_pro
6.9:build6900
zohocorpmanageengine_password_manager_pro
6.9:build6901
zohocorpmanageengine_password_manager_pro
6.9:build6902
zohocorpmanageengine_password_manager_pro
6.9:build6903
zohocorpmanageengine_password_manager_pro
6.9:build6904
zohocorpmanageengine_password_manager_pro
7.0
zohocorpmanageengine_password_manager_pro
7.0:build7000
zohocorpmanageengine_password_manager_pro
7.0:build7001
zohocorpmanageengine_password_manager_pro
7.0:build7002
zohocorpmanageengine_password_manager_pro
7.0:build7003
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://seclists.org/fulldisclosure/2014/Aug/55
http://seclists.org/fulldisclosure/2014/Aug/85
https://raw.githubusercontent.com/pedrib/PoC/master/ManageEngine/me_dc_pmp_it360_sqli.txt
https://raw.githubusercontent.com/pedrib/PoC/master/msf_modules/manageengine_dc_pmp_sqli.rb
http://seclists.org/fulldisclosure/2014/Aug/55
http://seclists.org/fulldisclosure/2014/Aug/85
https://raw.githubusercontent.com/pedrib/PoC/master/ManageEngine/me_dc_pmp_it360_sqli.txt
https://raw.githubusercontent.com/pedrib/PoC/master/msf_modules/manageengine_dc_pmp_sqli.rb