What is CVE-2018-7248?

CVE-2018-7248 is a vulnerability in Zoho ManageEngine ServiceDesk Plus 9.3 Build 9317 that allows unauthenticated users to validate domain user accounts and retrieve the user's logon domain.

How severe is CVE-2018-7248?

CVE-2018-7248 has a severity score of 5.3, which is classified as medium.

How can I exploit CVE-2018-7248?

To exploit CVE-2018-7248, an attacker can send a request containing a username to an API endpoint and retrieve the user's logon domain.

Is there a fix available for CVE-2018-7248?

At the time of writing, there is no known fix available for CVE-2018-7248. It is recommended to follow the vendor's advisory and apply any necessary patches or updates when they become available.

Where can I find more information about CVE-2018-7248?

You can find more information about CVE-2018-7248 at the following references: [SecurityFocus](http://www.securityfocus.com/bid/104287), [GitLab](https://gitlab.com/e-sterling/cve-2018-7248), [Medium](https://medium.com/@esterling_/cve-2018-7248-enumerating-active-directory-users-via-unauthenticated-manageengine-servicedesk-a1eda2942eb0)

Vulnerability/
CVE-2018-7248

medium

5.3

11/5/2018

5/8/2024

CVE-2018-7248

First published: Fri May 11 2018(Updated: )

An issue was discovered in Zoho ManageEngine ServiceDesk Plus 9.3 Build 9317. Unauthenticated users are able to validate domain user accounts by sending a request containing the username to an API endpoint. The endpoint will return the user's logon domain if the accounts exists, or 'null' if it does not.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
Zohocorp Manageengine Servicedesk Plus	=9.3-9317

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is CVE-2018-7248?
CVE-2018-7248 is a vulnerability in Zoho ManageEngine ServiceDesk Plus 9.3 Build 9317 that allows unauthenticated users to validate domain user accounts and retrieve the user's logon domain.
How severe is CVE-2018-7248?
CVE-2018-7248 has a severity score of 5.3, which is classified as medium.
How can I exploit CVE-2018-7248?
To exploit CVE-2018-7248, an attacker can send a request containing a username to an API endpoint and retrieve the user's logon domain.
Is there a fix available for CVE-2018-7248?
At the time of writing, there is no known fix available for CVE-2018-7248. It is recommended to follow the vendor's advisory and apply any necessary patches or updates when they become available.
Where can I find more information about CVE-2018-7248?
You can find more information about CVE-2018-7248 at the following references: [SecurityFocus](http://www.securityfocus.com/bid/104287), [GitLab](https://gitlab.com/e-sterling/cve-2018-7248), [Medium](https://medium.com/@esterling_/cve-2018-7248-enumerating-active-directory-users-via-unauthenticated-manageengine-servicedesk-a1eda2942eb0)

collector/nvd-index
agent/references
agent/severity
agent/event
agent/author
agent/first-publish-date
agent/description
agent/softwarecombine
agent/type
agent/tags
agent/last-modified-date
collector/mitre-cve
source/MITRE
vendor/zohocorp
canonical/zohocorp manageengine servicedesk plus
version/zohocorp manageengine servicedesk plus/9.3-9317

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.