NVD脆弱性詳細

CVE-2024-24409

概要	Zohocorp ManageEngine ADManager Plus versions 7203 and prior are vulnerable to Privilege Escalation in the Modify Computers option.
公表日	2024年11月8日17:15
登録日	2024年11月9日5:00
最終更新日	2024年11月14日5:35

CVSS3.1 : HIGH
スコア	8.8
ベクター	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
攻撃元区分(AV)	ネットワーク
攻撃条件の複雑さ(AC)	低
攻撃に必要な特権レベル(PR)	低
利用者の関与(UI)	不要
影響の想定範囲(S)	変更なし
機密性への影響(C)	高
完全性への影響(I)	高
可用性への影響(A)	高

影響を受けるソフトウェアの構成

構成1	以上	以下	より上	未満
cpe:2.3:a:zohocorp:manageengine_admanager_plus:6.6:6657::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:6.6.5:::::::*
cpe:2.3:a:zohocorp:manageengine_admanager_plus:6.5.7:::::::*
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.0:7054::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.0:7053::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.0:7052::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.0:7051::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.0:7050::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.0:7041::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.0:7040::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.0:7030::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.0:7020::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.0:7011::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.0:7010::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.0:7000::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.0:7066::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.0:7065::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.0:7064::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.0:7063::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.0:7062::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.0:7061::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.0:7060::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.0:7056::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.0:7055::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.0:-::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:6.2:::::::*
cpe:2.3:a:zohocorp:manageengine_admanager_plus:6.6:6660::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.1:7100::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.1:7101::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.1:-::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.1:7102::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:6.1:-::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:6.1:6111::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:6.1:6110::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:6.1:6109::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:6.1:6108::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:6.1:6107::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:6.1:6106::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:6.1:6105::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:6.1:6104::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:6.1:6103::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:6.1:6102::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:6.1:6101::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:6.1:6100::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.1:7110::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.1:7111::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.1:7112::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.1:7113::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.1:7114::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.1:7115::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.1:7116::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.1:7117::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.1:7118::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.1:7120::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.1:7121::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.1:7122::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.1:7123::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.1:7124::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.1:7125::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.1:7126::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.1:7130::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.1:7131::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.1:7140::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.1:7141::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.1:7150::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.1:7151::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.1:7160::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.1:7161::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.1:7162::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.1:7163::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.1:7180::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.1:7170::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.1:7171::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.1:7181::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.1:7182::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.2:7200::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.2:7201::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.2:7202::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.2:7203::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.1:7183::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.1:7184::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.1:7185::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.1:7186::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.1:7188::::::

関連情報、対策とツール

No	URL	refsource	タグ
1	https://www.manageengine.com/products/ad-manager/admanager-kb/cve-2024-24409.html		Vendor Advisory

共通脆弱性一覧

JVN脆弱性情報

Zoho Corporation の ManageEngine ADManager Plus における脆弱性

タイトル	Zoho Corporation の ManageEngine ADManager Plus における脆弱性
概要	Zoho Corporation の ManageEngine ADManager Plus には、不特定の脆弱性が存在します。
想定される影響	情報を取得される、情報を改ざんされる、およびサービス運用妨害 (DoS) 状態にされる可能性があります。
対策	ベンダアドバイザリまたはパッチ情報が公開されています。参考情報を参照して適切な対策を実施してください。
公表日	2024年11月8日0:00
登録日	2024年11月14日10:33
最終更新日	2024年11月14日10:33

影響を受けるシステム

Zoho Corporation

ManageEngine ADManager Plus 6.1

ManageEngine ADManager Plus 6.2

ManageEngine ADManager Plus 6.5.7

ManageEngine ADManager Plus 6.6

ManageEngine ADManager Plus 6.6.5

ManageEngine ADManager Plus 7.0

CVE (情報セキュリティ共通脆弱性識別子)

No	名前	URL
Common Vulnerabilities and Exposures (CVE)
1	CVE-2024-24409	https://www.cve.org/CVERecord?id=CVE-2024-24409
National Vulnerability Database (NVD)
2	CVE-2024-24409	https://nvd.nist.gov/vuln/detail/CVE-2024-24409

CWE (共通脆弱性タイプ一覧)

No	名前	URL
JVNDB
1	CWE-269	https://cwe.mitre.org/data/definitions/269.html
2	CWE-noinfo	https://www.ipa.go.jp/security/vuln/scap/cwe.html

その他

No	名前	URL
関連文書
1	www.manageengine.com (cve-2024-24409)	https://www.manageengine.com/products/ad-manager/admanager-kb/cve-2024-24409.html

変更履歴

No	変更内容	変更日
1	[2024年11月14日] 掲載	2024年11月14日10:33

構成1	以上	以下	より上	未満
cpe:2.3:a:zohocorp:manageengine_admanager_plus:6.6:6657::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:6.6.5:::::::*
cpe:2.3:a:zohocorp:manageengine_admanager_plus:6.5.7:::::::*
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.0:7054::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.0:7053::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.0:7052::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.0:7051::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.0:7050::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.0:7041::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.0:7040::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.0:7030::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.0:7020::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.0:7011::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.0:7010::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.0:7000::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.0:7066::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.0:7065::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.0:7064::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.0:7063::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.0:7062::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.0:7061::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.0:7060::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.0:7056::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.0:7055::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.0:-::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:6.2:::::::*
cpe:2.3:a:zohocorp:manageengine_admanager_plus:6.6:6660::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.1:7100::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.1:7101::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.1:-::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.1:7102::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:6.1:-::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:6.1:6111::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:6.1:6110::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:6.1:6109::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:6.1:6108::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:6.1:6107::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:6.1:6106::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:6.1:6105::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:6.1:6104::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:6.1:6103::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:6.1:6102::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:6.1:6101::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:6.1:6100::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.1:7110::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.1:7111::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.1:7112::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.1:7113::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.1:7114::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.1:7115::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.1:7116::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.1:7117::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.1:7118::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.1:7120::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.1:7121::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.1:7122::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.1:7123::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.1:7124::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.1:7125::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.1:7126::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.1:7130::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.1:7131::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.1:7140::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.1:7141::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.1:7150::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.1:7151::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.1:7160::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.1:7161::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.1:7162::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.1:7163::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.1:7180::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.1:7170::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.1:7171::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.1:7181::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.1:7182::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.2:7200::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.2:7201::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.2:7202::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.2:7203::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.1:7183::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.1:7184::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.1:7185::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.1:7186::::::
cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.1:7188::::::