CVE-2023-29084

HIGH NUCLEI

ManageEngine ADManager Plus ChangePasswordAction Authenticated Command Injection

Title source: metasploit

Description

Zoho ManageEngine ADManager Plus before 7181 allows for authenticated users to exploit command injection via Proxy settings.

Exploits (2)

nomisec WORKING POC 4 stars
by ohnonoyesyes · poc
https://github.com/ohnonoyesyes/CVE-2023-29084
metasploit WORKING POC EXCELLENT
by Simon Humbert, Dinh Hoang, Grant Willcox · rubypocwin
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/http/manageengine_admanager_plus_cve_2023_29084_auth_cmd_injection.rb

Nuclei Templates (1)

ManageEngine ADManager Plus - Command Injection
HIGHby rootxharsh,iamnoooob,pdresearch

References (3)

Scores

CVSS v3 7.2
EPSS 0.9388
EPSS Percentile 99.9%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-77
Status published
Products (2)
zohocorp/manageengine_admanager_plus 7.1 7100 (32 CPE variants)
zohocorp/manageengine_admanager_plus < 7.1
Published Apr 13, 2023
Tracked Since Feb 18, 2026