CVE-2018-19921: XSS
First published: Thu Dec 06 2018(Updated: )
Zoho ManageEngine OpManager 12.3 before 123237 has XSS in the domain controller.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| ManageEngine OpManager MSP | =11.4 | |
| ManageEngine OpManager MSP | =11.5 | |
| ManageEngine OpManager MSP | =12.3 | |
| ManageEngine OpManager MSP | =12.3-build12300 | |
| ManageEngine OpManager MSP | =12.3-build123001 | |
| ManageEngine OpManager MSP | =12.3-build123002 | |
| ManageEngine OpManager MSP | =12.3-build123003 | |
| ManageEngine OpManager MSP | =12.3-build123004 | |
| ManageEngine OpManager MSP | =12.3-build123005 | |
| ManageEngine OpManager MSP | =12.3-build123006 | |
| ManageEngine OpManager MSP | =12.3-build123007 | |
| ManageEngine OpManager MSP | =12.3-build123008 | |
| ManageEngine OpManager MSP | =12.3-build123009 | |
| ManageEngine OpManager MSP | =12.3-build123010 | |
| ManageEngine OpManager MSP | =12.3-build123011 | |
| ManageEngine OpManager MSP | =12.3-build123012 | |
| ManageEngine OpManager MSP | =12.3-build123013 | |
| ManageEngine OpManager MSP | =12.3-build123014 | |
| ManageEngine OpManager MSP | =12.3-build123015 | |
| ManageEngine OpManager MSP | =12.3-build123021 | |
| ManageEngine OpManager MSP | =12.3-build123022 | |
| ManageEngine OpManager MSP | =12.3-build123023 | |
| ManageEngine OpManager MSP | =12.3-build123024 | |
| ManageEngine OpManager MSP | =12.3-build123025 | |
| ManageEngine OpManager MSP | =12.3-build123026 | |
| ManageEngine OpManager MSP | =12.3-build123027 | |
| ManageEngine OpManager MSP | =12.3-build123028 | |
| ManageEngine OpManager MSP | =12.3-build123029 | |
| ManageEngine OpManager MSP | =12.3-build123030 | |
| ManageEngine OpManager MSP | =12.3-build123031 | |
| ManageEngine OpManager MSP | =12.3-build123032 | |
| ManageEngine OpManager MSP | =12.3-build123033 | |
| ManageEngine OpManager MSP | =12.3-build123034 | |
| ManageEngine OpManager MSP | =12.3-build123035 | |
| ManageEngine OpManager MSP | =12.3-build123036 | |
| ManageEngine OpManager MSP | =12.3-build123037 | |
| ManageEngine OpManager MSP | =12.3-build123043 | |
| ManageEngine OpManager MSP | =12.3-build123044 | |
| ManageEngine OpManager MSP | =12.3-build123045 | |
| ManageEngine OpManager MSP | =12.3-build123046 | |
| ManageEngine OpManager MSP | =12.3-build123047 | |
| ManageEngine OpManager MSP | =12.3-build123048 | |
| ManageEngine OpManager MSP | =12.3-build123049 | |
| ManageEngine OpManager MSP | =12.3-build123050 | |
| ManageEngine OpManager MSP | =12.3-build123051 | |
| ManageEngine OpManager MSP | =12.3-build123052 | |
| ManageEngine OpManager MSP | =12.3-build123053 | |
| ManageEngine OpManager MSP | =12.3-build123054 | |
| ManageEngine OpManager MSP | =12.3-build123055 | |
| ManageEngine OpManager MSP | =12.3-build123056 | |
| ManageEngine OpManager MSP | =12.3-build123057 | |
| ManageEngine OpManager MSP | =12.3-build123062 | |
| ManageEngine OpManager MSP | =12.3-build123063 | |
| ManageEngine OpManager MSP | =12.3-build123064 | |
| ManageEngine OpManager MSP | =12.3-build123065 | |
| ManageEngine OpManager MSP | =12.3-build123066 | |
| ManageEngine OpManager MSP | =12.3-build123067 | |
| ManageEngine OpManager MSP | =12.3-build123068 | |
| ManageEngine OpManager MSP | =12.3-build123069 | |
| ManageEngine OpManager MSP | =12.3-build123070 | |
| ManageEngine OpManager MSP | =12.3-build123076 | |
| ManageEngine OpManager MSP | =12.3-build123077 | |
| ManageEngine OpManager MSP | =12.3-build123078 | |
| ManageEngine OpManager MSP | =12.3-build123079 | |
| ManageEngine OpManager MSP | =12.3-build123080 | |
| ManageEngine OpManager MSP | =12.3-build123081 | |
| ManageEngine OpManager MSP | =12.3-build123082 | |
| ManageEngine OpManager MSP | =12.3-build123083 | |
| ManageEngine OpManager MSP | =12.3-build123084 | |
| ManageEngine OpManager MSP | =12.3-build123086 | |
| ManageEngine OpManager MSP | =12.3-build123090 | |
| ManageEngine OpManager MSP | =12.3-build123091 | |
| ManageEngine OpManager MSP | =12.3-build123092 | |
| ManageEngine OpManager MSP | =12.3-build123093 | |
| ManageEngine OpManager MSP | =12.3-build123104 | |
| ManageEngine OpManager MSP | =12.3-build123105 | |
| ManageEngine OpManager MSP | =12.3-build123106 | |
| ManageEngine OpManager MSP | =12.3-build123107 | |
| ManageEngine OpManager MSP | =12.3-build123108 | |
| ManageEngine OpManager MSP | =12.3-build123109 | |
| ManageEngine OpManager MSP | =12.3-build123110 | |
| ManageEngine OpManager MSP | =12.3-build123111 | |
| ManageEngine OpManager MSP | =12.3-build123112 | |
| ManageEngine OpManager MSP | =12.3-build123113 | |
| ManageEngine OpManager MSP | =12.3-build123114 | |
| ManageEngine OpManager MSP | =12.3-build123115 | |
| ManageEngine OpManager MSP | =12.3-build123116 | |
| ManageEngine OpManager MSP | =12.3-build123117 | |
| ManageEngine OpManager MSP | =12.3-build123118 | |
| ManageEngine OpManager MSP | =12.3-build123119 | |
| ManageEngine OpManager MSP | =12.3-build123120 | |
| ManageEngine OpManager MSP | =12.3-build123121 | |
| ManageEngine OpManager MSP | =12.3-build123122 | |
| ManageEngine OpManager MSP | =12.3-build123123 | |
| ManageEngine OpManager MSP | =12.3-build123124 | |
| ManageEngine OpManager MSP | =12.3-build123125 | |
| ManageEngine OpManager MSP | =12.3-build123126 | |
| ManageEngine OpManager MSP | =12.3-build123127 | |
| ManageEngine OpManager MSP | =12.3-build123136 | |
| ManageEngine OpManager MSP | =12.3-build123137 | |
| ManageEngine OpManager MSP | =12.3-build123147 | |
| ManageEngine OpManager MSP | =12.3-build123148 | |
| ManageEngine OpManager MSP | =12.3-build123149 | |
| ManageEngine OpManager MSP | =12.3-build123150 | |
| ManageEngine OpManager MSP | =12.3-build123156 | |
| ManageEngine OpManager MSP | =12.3-build123157 | |
| ManageEngine OpManager MSP | =12.3-build123158 | |
| ManageEngine OpManager MSP | =12.3-build123159 | |
| ManageEngine OpManager MSP | =12.3-build123160 | |
| ManageEngine OpManager MSP | =12.3-build123161 | |
| ManageEngine OpManager MSP | =12.3-build123162 | |
| ManageEngine OpManager MSP | =12.3-build123163 | |
| ManageEngine OpManager MSP | =12.3-build123164 | |
| ManageEngine OpManager MSP | =12.3-build123165 | |
| ManageEngine OpManager MSP | =12.3-build123166 | |
| ManageEngine OpManager MSP | =12.3-build123167 | |
| ManageEngine OpManager MSP | =12.3-build123168 | |
| ManageEngine OpManager MSP | =12.3-build123169 | |
| ManageEngine OpManager MSP | =12.3-build123175 | |
| ManageEngine OpManager MSP | =12.3-build123176 | |
| ManageEngine OpManager MSP | =12.3-build123177 | |
| ManageEngine OpManager MSP | =12.3-build123178 | |
| ManageEngine OpManager MSP | =12.3-build123179 | |
| ManageEngine OpManager MSP | =12.3-build123180 | |
| ManageEngine OpManager MSP | =12.3-build123181 | |
| ManageEngine OpManager MSP | =12.3-build123182 | |
| ManageEngine OpManager MSP | =12.3-build123183 | |
| ManageEngine OpManager MSP | =12.3-build123184 | |
| ManageEngine OpManager MSP | =12.3-build123185 | |
| ManageEngine OpManager MSP | =12.3-build123186 | |
| ManageEngine OpManager MSP | =12.3-build123187 | |
| ManageEngine OpManager MSP | =12.3-build123188 | |
| ManageEngine OpManager MSP | =12.3-build123189 | |
| ManageEngine OpManager MSP | =12.3-build123190 | |
| ManageEngine OpManager MSP | =12.3-build123191 | |
| ManageEngine OpManager MSP | =12.3-build123192 | |
| ManageEngine OpManager MSP | =12.3-build123193 | |
| ManageEngine OpManager MSP | =12.3-build123194 | |
| ManageEngine OpManager MSP | =12.3-build123195 | |
| ManageEngine OpManager MSP | =12.3-build123196 | |
| ManageEngine OpManager MSP | =12.3-build123197 | |
| ManageEngine OpManager MSP | =12.3-build123198 | |
| ManageEngine OpManager MSP | =12.3-build123204 | |
| ManageEngine OpManager MSP | =12.3-build123205 | |
| ManageEngine OpManager MSP | =12.3-build123206 | |
| ManageEngine OpManager MSP | =12.3-build123207 | |
| ManageEngine OpManager MSP | =12.3-build123208 | |
| ManageEngine OpManager MSP | =12.3-build123214 | |
| ManageEngine OpManager MSP | =12.3-build123215 | |
| ManageEngine OpManager MSP | =12.3-build123217 | |
| ManageEngine OpManager MSP | =12.3-build123218 | |
| ManageEngine OpManager MSP | =12.3-build123219 | |
| ManageEngine OpManager MSP | =12.3-build123220 | |
| ManageEngine OpManager MSP | =12.3-build123221 | |
| ManageEngine OpManager MSP | =123222 | |
| ManageEngine OpManager MSP | =123223 | |
| ManageEngine OpManager MSP | =123224 | |
| ManageEngine OpManager MSP | =123229 | |
| ManageEngine OpManager MSP | =123230 | |
| ManageEngine OpManager MSP | =123231 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the severity of CVE-2018-19921?
CVE-2018-19921 is classified as a medium severity vulnerability due to its potential for XSS attacks.
How do I fix CVE-2018-19921?
To fix CVE-2018-19921, update your Zoho ManageEngine OpManager to version 12.3 build 123237 or higher.
What types of attacks can CVE-2018-19921 enable?
CVE-2018-19921 can enable attackers to execute arbitrary JavaScript in users' browsers through reflected XSS.
Is my version of OpManager vulnerable to CVE-2018-19921?
If you are running Zoho ManageEngine OpManager version 12.3 prior to build 123237, your version is vulnerable to CVE-2018-19921.
What is the impact of CVE-2018-19921 on my system?
The impact of CVE-2018-19921 includes unauthorized access to user sessions and potential data theft through executed scripts.
- agent/type
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/author
- agent/last-modified-date
- agent/references
- agent/description
- agent/event
- agent/weakness
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/zohocorp
- canonical/manageengine opmanager msp
- version/manageengine opmanager msp/11.4
- version/manageengine opmanager msp/11.5
- version/manageengine opmanager msp/12.3
- version/manageengine opmanager msp/12.3-build12300
- version/manageengine opmanager msp/12.3-build123001
- version/manageengine opmanager msp/12.3-build123002
- version/manageengine opmanager msp/12.3-build123003
- version/manageengine opmanager msp/12.3-build123004
- version/manageengine opmanager msp/12.3-build123005
- version/manageengine opmanager msp/12.3-build123006
- version/manageengine opmanager msp/12.3-build123007
- version/manageengine opmanager msp/12.3-build123008
- version/manageengine opmanager msp/12.3-build123009
- version/manageengine opmanager msp/12.3-build123010
- version/manageengine opmanager msp/12.3-build123011
- version/manageengine opmanager msp/12.3-build123012
- version/manageengine opmanager msp/12.3-build123013
- version/manageengine opmanager msp/12.3-build123014
- version/manageengine opmanager msp/12.3-build123015
- version/manageengine opmanager msp/12.3-build123021
- version/manageengine opmanager msp/12.3-build123022
- version/manageengine opmanager msp/12.3-build123023
- version/manageengine opmanager msp/12.3-build123024
- version/manageengine opmanager msp/12.3-build123025
- version/manageengine opmanager msp/12.3-build123026
- version/manageengine opmanager msp/12.3-build123027
- version/manageengine opmanager msp/12.3-build123028
- version/manageengine opmanager msp/12.3-build123029
- version/manageengine opmanager msp/12.3-build123030
- version/manageengine opmanager msp/12.3-build123031
- version/manageengine opmanager msp/12.3-build123032
- version/manageengine opmanager msp/12.3-build123033
- version/manageengine opmanager msp/12.3-build123034
- version/manageengine opmanager msp/12.3-build123035
- version/manageengine opmanager msp/12.3-build123036
- version/manageengine opmanager msp/12.3-build123037
- version/manageengine opmanager msp/12.3-build123043
- version/manageengine opmanager msp/12.3-build123044
- version/manageengine opmanager msp/12.3-build123045
- version/manageengine opmanager msp/12.3-build123046
- version/manageengine opmanager msp/12.3-build123047
- version/manageengine opmanager msp/12.3-build123048
- version/manageengine opmanager msp/12.3-build123049
- version/manageengine opmanager msp/12.3-build123050
- version/manageengine opmanager msp/12.3-build123051
- version/manageengine opmanager msp/12.3-build123052
- version/manageengine opmanager msp/12.3-build123053
- version/manageengine opmanager msp/12.3-build123054
- version/manageengine opmanager msp/12.3-build123055
- version/manageengine opmanager msp/12.3-build123056
- version/manageengine opmanager msp/12.3-build123057
- version/manageengine opmanager msp/12.3-build123062
- version/manageengine opmanager msp/12.3-build123063
- version/manageengine opmanager msp/12.3-build123064
- version/manageengine opmanager msp/12.3-build123065
- version/manageengine opmanager msp/12.3-build123066
- version/manageengine opmanager msp/12.3-build123067
- version/manageengine opmanager msp/12.3-build123068
- version/manageengine opmanager msp/12.3-build123069
- version/manageengine opmanager msp/12.3-build123070
- version/manageengine opmanager msp/12.3-build123076
- version/manageengine opmanager msp/12.3-build123077
- version/manageengine opmanager msp/12.3-build123078
- version/manageengine opmanager msp/12.3-build123079
- version/manageengine opmanager msp/12.3-build123080
- version/manageengine opmanager msp/12.3-build123081
- version/manageengine opmanager msp/12.3-build123082
- version/manageengine opmanager msp/12.3-build123083
- version/manageengine opmanager msp/12.3-build123084
- version/manageengine opmanager msp/12.3-build123086
- version/manageengine opmanager msp/12.3-build123090
- version/manageengine opmanager msp/12.3-build123091
- version/manageengine opmanager msp/12.3-build123092
- version/manageengine opmanager msp/12.3-build123093
- version/manageengine opmanager msp/12.3-build123104
- version/manageengine opmanager msp/12.3-build123105
- version/manageengine opmanager msp/12.3-build123106
- version/manageengine opmanager msp/12.3-build123107
- version/manageengine opmanager msp/12.3-build123108
- version/manageengine opmanager msp/12.3-build123109
- version/manageengine opmanager msp/12.3-build123110
- version/manageengine opmanager msp/12.3-build123111
- version/manageengine opmanager msp/12.3-build123112
- version/manageengine opmanager msp/12.3-build123113
- version/manageengine opmanager msp/12.3-build123114
- version/manageengine opmanager msp/12.3-build123115
- version/manageengine opmanager msp/12.3-build123116
- version/manageengine opmanager msp/12.3-build123117
- version/manageengine opmanager msp/12.3-build123118
- version/manageengine opmanager msp/12.3-build123119
- version/manageengine opmanager msp/12.3-build123120
- version/manageengine opmanager msp/12.3-build123121
- version/manageengine opmanager msp/12.3-build123122
- version/manageengine opmanager msp/12.3-build123123
- version/manageengine opmanager msp/12.3-build123124
- version/manageengine opmanager msp/12.3-build123125
- version/manageengine opmanager msp/12.3-build123126
- version/manageengine opmanager msp/12.3-build123127
- version/manageengine opmanager msp/12.3-build123136
- version/manageengine opmanager msp/12.3-build123137
- version/manageengine opmanager msp/12.3-build123147
- version/manageengine opmanager msp/12.3-build123148
- version/manageengine opmanager msp/12.3-build123149
- version/manageengine opmanager msp/12.3-build123150
- version/manageengine opmanager msp/12.3-build123156
- version/manageengine opmanager msp/12.3-build123157
- version/manageengine opmanager msp/12.3-build123158
- version/manageengine opmanager msp/12.3-build123159
- version/manageengine opmanager msp/12.3-build123160
- version/manageengine opmanager msp/12.3-build123161
- version/manageengine opmanager msp/12.3-build123162
- version/manageengine opmanager msp/12.3-build123163
- version/manageengine opmanager msp/12.3-build123164
- version/manageengine opmanager msp/12.3-build123165
- version/manageengine opmanager msp/12.3-build123166
- version/manageengine opmanager msp/12.3-build123167
- version/manageengine opmanager msp/12.3-build123168
- version/manageengine opmanager msp/12.3-build123169
- version/manageengine opmanager msp/12.3-build123175
- version/manageengine opmanager msp/12.3-build123176
- version/manageengine opmanager msp/12.3-build123177
- version/manageengine opmanager msp/12.3-build123178
- version/manageengine opmanager msp/12.3-build123179
- version/manageengine opmanager msp/12.3-build123180
- version/manageengine opmanager msp/12.3-build123181
- version/manageengine opmanager msp/12.3-build123182
- version/manageengine opmanager msp/12.3-build123183
- version/manageengine opmanager msp/12.3-build123184
- version/manageengine opmanager msp/12.3-build123185
- version/manageengine opmanager msp/12.3-build123186
- version/manageengine opmanager msp/12.3-build123187
- version/manageengine opmanager msp/12.3-build123188
- version/manageengine opmanager msp/12.3-build123189
- version/manageengine opmanager msp/12.3-build123190
- version/manageengine opmanager msp/12.3-build123191
- version/manageengine opmanager msp/12.3-build123192
- version/manageengine opmanager msp/12.3-build123193
- version/manageengine opmanager msp/12.3-build123194
- version/manageengine opmanager msp/12.3-build123195
- version/manageengine opmanager msp/12.3-build123196
- version/manageengine opmanager msp/12.3-build123197
- version/manageengine opmanager msp/12.3-build123198
- version/manageengine opmanager msp/12.3-build123204
- version/manageengine opmanager msp/12.3-build123205
- version/manageengine opmanager msp/12.3-build123206
- version/manageengine opmanager msp/12.3-build123207
- version/manageengine opmanager msp/12.3-build123208
- version/manageengine opmanager msp/12.3-build123214
- version/manageengine opmanager msp/12.3-build123215
- version/manageengine opmanager msp/12.3-build123217
- version/manageengine opmanager msp/12.3-build123218
- version/manageengine opmanager msp/12.3-build123219
- version/manageengine opmanager msp/12.3-build123220
- version/manageengine opmanager msp/12.3-build123221
- version/manageengine opmanager msp/123222
- version/manageengine opmanager msp/123223
- version/manageengine opmanager msp/123224
- version/manageengine opmanager msp/123229
- version/manageengine opmanager msp/123230
- version/manageengine opmanager msp/123231