{"api_version":"1","generated_at":"2026-04-23T23:09:09+00:00","cve":"CVE-2019-17421","urls":{"html":"https://cve.report/CVE-2019-17421","api":"https://cve.report/api/cve/CVE-2019-17421.json","docs":"https://cve.report/api","cve_org":"https://www.cve.org/CVERecord?id=CVE-2019-17421","nvd":"https://nvd.nist.gov/vuln/detail/CVE-2019-17421"},"summary":{"title":"CVE-2019-17421","description":"Incorrect file permissions on the packaged Nipper executable file in Zoho ManageEngine OpManager 12.4.072 and Firewall Analyzer 12.4.072 allow local users to elevate privileges to root by overwriting this file with a malicious payload.","state":"PUBLIC","assigner":"cve@mitre.org","published_at":"2019-11-21 15:15:00","updated_at":"2021-04-29 18:17:00"},"problem_types":["CWE-276"],"metrics":[],"references":[{"url":"https://www.manageengine.com/products/firewall/security-updates/cve-2019-17421.html","name":"https://www.manageengine.com/products/firewall/security-updates/cve-2019-17421.html","refsource":"CONFIRM","tags":["Patch","Vendor Advisory"],"title":"Security Updates - CVE-2019-17421 | ManageEngine Firewall Analyzer","mime":"text/html","httpstatus":"200","archivestatus":"0"},{"url":"https://twitter.com/va_start","name":"https://twitter.com/va_start","refsource":"MISC","tags":["Exploit","Third Party Advisory"],"title":"(...) ⏣ (@va_start) | Twitter","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"https://blog.vastart.dev/2019/11/cve-2019-17421-privilege-escalation.html","name":"https://blog.vastart.dev/2019/11/cve-2019-17421-privilege-escalation.html","refsource":"MISC","tags":["Third Party Advisory"],"title":"CVE-2019-17421 Privilege Escalation Vulnerability In Zoho's OpManager & Firewall Analyzer","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"https://www.cve.org/CVERecord?id=CVE-2019-17421","name":"CVE Program record","refsource":"CVE.ORG","tags":["canonical"]},{"url":"https://nvd.nist.gov/vuln/detail/CVE-2019-17421","name":"NVD vulnerability detail","refsource":"NVD","tags":["canonical","analysis"]}],"affected":[],"timeline":[],"solutions":[],"workarounds":[],"exploits":[],"credits":[],"nvd_cpes":[{"cve_year":"2019","cve_id":"17421","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"zohocorp","cpe5":"manageengine_firewall_analyzer","cpe6":"12.4","cpe7":"124072","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2019","cve_id":"17421","vulnerable":"1","versionEndIncluding":"1","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"zohocorp","cpe5":"manageengine_firewall_analyzer","cpe6":"12.4","cpe7":"124072","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2019","cve_id":"17421","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"zohocorp","cpe5":"manageengine_opmanager","cpe6":"12.4","cpe7":"124072","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2019","cve_id":"17421","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"zohocorp","cpe5":"manageengine_opmanager","cpe6":"12.4","cpe7":"build124072","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2019","cve_id":"17421","vulnerable":"1","versionEndIncluding":"1","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"zohocorp","cpe5":"manageengine_opmanager","cpe6":"12.4","cpe7":"124072","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"}],"vendor_comments":[],"enrichments":{"kev":null,"epss":null,"legacy_qids":[]},"source_records":{"cve_program":{"CVE_data_meta":{"ASSIGNER":"cve@mitre.org","ID":"CVE-2019-17421","STATE":"PUBLIC"},"affects":{"vendor":{"vendor_data":[{"product":{"product_data":[{"product_name":"n/a","version":{"version_data":[{"version_value":"n/a"}]}}]},"vendor_name":"n/a"}]}},"data_format":"MITRE","data_type":"CVE","data_version":"4.0","description":{"description_data":[{"lang":"eng","value":"Incorrect file permissions on the packaged Nipper executable file in Zoho ManageEngine OpManager 12.4.072 and Firewall Analyzer 12.4.072 allow local users to elevate privileges to root by overwriting this file with a malicious payload."}]},"problemtype":{"problemtype_data":[{"description":[{"lang":"eng","value":"n/a"}]}]},"references":{"reference_data":[{"url":"https://twitter.com/va_start","refsource":"MISC","name":"https://twitter.com/va_start"},{"refsource":"MISC","name":"https://blog.vastart.dev/2019/11/cve-2019-17421-privilege-escalation.html","url":"https://blog.vastart.dev/2019/11/cve-2019-17421-privilege-escalation.html"},{"refsource":"CONFIRM","name":"https://www.manageengine.com/products/firewall/security-updates/cve-2019-17421.html","url":"https://www.manageengine.com/products/firewall/security-updates/cve-2019-17421.html"}]}},"nvd":{"publishedDate":"2019-11-21 15:15:00","lastModifiedDate":"2021-04-29 18:17:00","problem_types":["CWE-276"],"metrics":{"baseMetricV3":{"cvssV3":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH","baseScore":7.8,"baseSeverity":"HIGH"},"exploitabilityScore":1.8,"impactScore":5.9},"baseMetricV2":{"cvssV2":{"version":"2.0","vectorString":"AV:L/AC:L/Au:N/C:C/I:C/A:C","accessVector":"LOCAL","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"COMPLETE","integrityImpact":"COMPLETE","availabilityImpact":"COMPLETE","baseScore":7.2},"severity":"HIGH","exploitabilityScore":3.9,"impactScore":10,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}},"configurations":{"CVE_data_version":"4.0","nodes":[{"operator":"OR","children":[],"cpe_match":[{"vulnerable":true,"cpe23Uri":"cpe:2.3:a:zohocorp:manageengine_firewall_analyzer:12.4:124072:*:*:*:*:*:*","cpe_name":[]},{"vulnerable":true,"cpe23Uri":"cpe:2.3:a:zohocorp:manageengine_opmanager:12.4:build124072:*:*:*:*:*:*","cpe_name":[]}]}]}},"legacy_mitre":{"record":{"CveYear":"2019","CveId":"17421","Ordinal":"157201","Title":"CVE-2019-17421","CVE":"CVE-2019-17421","Year":"2019"},"notes":[{"CveYear":"2019","CveId":"17421","Ordinal":"1","NoteData":"Incorrect file permissions on the packaged Nipper executable file in Zoho ManageEngine OpManager 12.4.072 and Firewall Analyzer 12.4.072 allow local users to elevate privileges to root by overwriting this file with a malicious payload.","Type":"Description","Title":null},{"CveYear":"2019","CveId":"17421","Ordinal":"2","NoteData":"2019-11-21","Type":"Other","Title":"Published"},{"CveYear":"2019","CveId":"17421","Ordinal":"3","NoteData":"2019-11-29","Type":"Other","Title":"Modified"}]}}}