From fb74888a3196e411e08cfc29f3bd9bc94001c8c9 Mon Sep 17 00:00:00 2001
From: Spencer McIntyre <zeroSteiner@gmail.com>
Date: Wed, 15 Sep 2021 08:42:55 -0400
Subject: [PATCH] Correct the CVE reference

---
 .../exploits/multi/http/opmanager_sumpdu_deserialization.rb    | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/modules/exploits/multi/http/opmanager_sumpdu_deserialization.rb b/modules/exploits/multi/http/opmanager_sumpdu_deserialization.rb
index d526ee97781b..8fd8bc4f5e23 100644
--- a/modules/exploits/multi/http/opmanager_sumpdu_deserialization.rb
+++ b/modules/exploits/multi/http/opmanager_sumpdu_deserialization.rb
@@ -32,7 +32,8 @@ def initialize(info = {})
         'Arch' => [ARCH_CMD, ARCH_PYTHON, ARCH_X86, ARCH_X64],
         'Platform' => [ 'win', 'linux', 'python', 'unix' ],
         'References' => [
-          [ 'CVE', '2021-3287' ],
+          [ 'CVE', '2020-28653' ], # original CVE
+          # [ 'CVE', '2021-3287' ], # patch bypass
           [ 'URL', 'https://haxolot.com/posts/2021/manageengine_opmanager_pre_auth_rce/' ]
         ],
         'Privileged' => true,