Hillstone Networks

RULE（RULE ID：332967）

Rule General Information


Release Date:		2021-03-26

Rule Name:		ManageEngine EventLog Analyzer Cross Site Request Forgery Vulnerability

Severity:

CVE ID:

Rule Protection Details


Description:		A cross site request forgery vulnerability exists in ManageEngine EventLog Analyzer. The vulnerability is due to insufficient input validation of parameters sent to event/userManagementForm.do. By convincing a user to follow a malicious link, a remote attacker can exploit this vulnerability to conduct a cross-site request forgery (CSRF) attack on the affected system. A successful exploit could allow the attacker to submit arbitrary requests to the affected system via the web browser with the privileges of the user.

Impact:		An attacker can launch a cross-site request forgery in the context of the affected software. Arbitrary script transmitted from a user that the software trusts can be executed in a successful exploit attempt.

Affected OS:		Windows, Linux, Others

Reference:

Solutions

Please contact the software vendor to update the software patch.