Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cnvdChina National Vulnerability DatabaseCNVD-2022-08168
HistoryJan 16, 2022 - 12:00 a.m.

Zoho ManageEngine O365 Manager Plus Remote Code Execution Vulnerability

2022-01-1600:00:00
China National Vulnerability Database
www.cnvd.org.cn
10
zoho manageengine
o365 manager plus
remote code execution
vulnerability
build 4416
input data
network system
filter
special elements
changedbapi
bcp file
cnvd

EPSS

0.002

Percentile

54.3%

JSON

A security vulnerability exists in Zoho ManageEngine O365 Manager Plus, a software for auditing, monitoring and managing Office 365 from ZOHO, Inc. prior to Build 4416, which stems from an external input data during the construction of a code segment, and the network system or product fails to properly filter special elements within it. An attacker could use this vulnerability to override remote code execution in the ChangeDBAPI component via a BCP file.

Related

cvelist 1
nvd 1
cve 1
prion 1
cvelist
cvelist
CVE-2021-44652
2022-01-12 14:59:37
nvd
nvd
CVE-2021-44652
2022-01-12 15:15:07
cve
cve
CVE-2021-44652
2022-01-12 15:15:07
prion
prion
Remote code execution
2022-01-12 15:15:00

EPSS

0.002

Percentile

54.3%

JSON
Related for CNVD-2022-08168
cvelist1nvd1cve1prion1