7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.015 Low
EPSS
Percentile
87.2%
NetFlow Analyzer provided by Zoho Corporation is a traffic analysis tool. NetFlow Analyzer fails to restrict access permissions.
Administrative operations, for example, changing passwords or user account deletion may be performed by a user with guest privileges.
In addition, information intended only for administrative users may be obtained by a third-party.
Update the software build and apply the patch
Update the software to build 10250 and then apply the patch according to the information provided by the developer.