Rewterz Threat Alert – “Stealc” – An Information Stealer Malware Found in Several Instances in the Wild – Active IOCs
March 8, 2023Rewterz Threat Advisory – Multiple Apache HTTP Server Vulnerabilities
March 9, 2023Rewterz Threat Alert – “Stealc” – An Information Stealer Malware Found in Several Instances in the Wild – Active IOCs
March 8, 2023Rewterz Threat Advisory – Multiple Apache HTTP Server Vulnerabilities
March 9, 2023Severity
Medium
Analysis Summary
CVE-2023-26600 CVSS:7.5
Zoho ManageEngine products could allow a remote attacker to gain elevated privileges on the system, caused by a flaw in the query reports functionality. By utilizing a certain PostgreSQL function in a query, an attacker could exploit this vulnerability to gain access to restricted data in a Postgres database system.
CVE-2023-26601 CVSS:5.3
Zoho ManageEngine products are vulnerable to a denial of service, caused by improper memory allocation by the API method. By sending a small image file with a large size defined in the header, a remote attacker could exploit this vulnerability to cause a denial of service.
Impact
- Privilege Escalation
- Denial of Service
Indicators Of Compromise
CVE
- CVE-2023-26600
- CVE-2023-26601
Affected Vendors
Zoho
Affected Products
- Zoho ManageEngine AssetExplorer 6987
- Zoho ManageEngine ServiceDesk Plus 14103
- Zoho ManageEngine ServiceDesk Plus MSP 14000
- Zoho ManageEngine SupportCenter Plus 14000
Remediation
Refer to ManageEngine Web site for patch, upgrade or suggested workaround information.