2 matches found
ManageEngine NCM 12.5.x < 12.5.658 / 12.6.x < 12.6.003 / 12.6.105 / 12.6.120 RCE
ManageEngine NCM 12.5.x prior to 12.5.658, or 12.6.x prior to 12.6.003 / 12.6.105 / 12.6.120 can allow authenticated users to make database changes that lead to remote code execution. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported...
CVE-2022-37024
Summary (CVE-2022-37024) : Multiple Zoho ManageEngine products (OpManager, OpManager Plus, OpManager MSP, Network Configuration Manager, NetFlow Analyzer, OpUtils) prior to 2022-07-29 are affected by a remote code execution flaw. The root cause is insufficient input validation in the getDNSResolv...