Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cnvdChina National Vulnerability DatabaseCNVD-2022-09270
HistoryJun 11, 2021 - 12:00 a.m.

Zoho ManageEngine Eventlog Analyzer Path Traversal Vulnerability

2021-06-1100:00:00
China National Vulnerability Database
www.cnvd.org.cn
8
zoho manageengine
eventlog analyzer
path traversal
vulnerability
remote code execution
zip archive
directory traversal
software
analysis
log
cnvd

EPSS

0.007

Percentile

81.0%

JSON

ZOHO ManageEngine EventLog Analyzer is a system and event log analysis software from ZOHO. A path traversal vulnerability exists in Zoho ManageEngine Eventlog Analyzer 12147 and earlier versions, which is caused by an unauthenticated directory traversal through a ZIP archive entry. An attacker could exploit this vulnerability to cause remote code execution.

Related

nvd 1
cve 1
prion 1
cvelist 1
nvd
nvd
CVE-2021-28959
2021-04-30 13:15:07
cve
cve
CVE-2021-28959
2021-04-30 13:15:07
prion
prion
Directory traversal
2021-04-30 13:15:00
cvelist
cvelist
CVE-2021-28959
2021-04-30 12:16:42

EPSS

0.007

Percentile

81.0%

JSON
Related for CNVD-2022-09270
nvd1cve1prion1cvelist1