CVE-2026-8923: Authenticated Remote Code Execution Vulnerability in Eventlog analyzer and Log360
| Vulnerability details |
| Severity |
High |
| CVE ID |
CVE-2026-8923 |
| Affected software versions |
Builds 13060 and earlier |
| Fixed version |
Build 13062 |
| Fixed on |
July 6, 2026 |
Details
CVE-2026-8923 refers to an authenticated remote code execution vulnerability in ManageEngine Log360 and Eventlog analyzer where an authenticated technician with log forwarding and log filtering modules privilege could perform arbitrary remote code Execution.
Impact
An authenticated technician could exploit insufficient validation of input parameters to inject and execute arbitrary code on the server, potentially leading to remote code execution.
Fix
The issue is fixed by adding proper processing & sanitizing of input values to prevent remote code execution.
Steps to update
Update your Log360 or EventLog Analyzer instance to build 13062 or later using the service pack.
Acknowledgements
This issue was identified by the ManageEngine Security Team through the Zoho Bug Bounty Program.
Please contact our product support or our security team if you need further assistance.