Lucene search
K

227 matches found

Vulnrichment
Vulnrichment
added 2022/11/18 12:0 a.m.7 views

CVE-2022-42904

Zoho ManageEngine ADManager Plus through 7151 allows authenticated admin users to execute the commands in proxy settings...

7.1AI score0.0767EPSS
Exploits0References1
OSV
OSV
added 2022/10/06 6:16 p.m.4 views

CVE-2022-36774

IBM Robotic Process Automation 21.0.0, 21.0.1, and 21.0.2 is vulnerable to man in the middle attacks through manipulation of the client proxy configuration. IBM X-Force ID: 233575...

5.3CVSS5.8AI score0.00276EPSS
Exploits0References2
CNVD
CNVD
added 2022/04/21 12:0 a.m.18 views

Zoho ManageEngine M365 Manager Plus Command Injection Vulnerability

Zoho ManageEngine M365 Manager Plus is an extensive Microsoft 365 tool from Zoho India. Used to report, manage, monitor, audit and create alerts for critical activities. Zoho ManageEngine M365 Manager Plus Build 4419 Prior versions of Zoho ManageEngine M365 Manager Plus have a command injection...

7.2CVSS7.6AI score0.04794EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2022/01/25 8:15 p.m.6 views

CVE-2022-23032

In all versions before 7.2.1.4, when proxy settings are configured in the network access resource of a BIG-IP APM system, connecting BIG-IP Edge Client on Mac and Windows is vulnerable to a DNS rebinding attack. Note: Software versions which have reached End of Technical Support EoTS are not...

5.3CVSS5.8AI score0.00404EPSS
Exploits0References2
OSV
OSV
added 2022/01/25 8:15 p.m.4 views

CVE-2022-23032

In all versions before 7.2.1.4, when proxy settings are configured in the network access resource of a BIG-IP APM system, connecting BIG-IP Edge Client on Mac and Windows is vulnerable to a DNS rebinding attack. Note: Software versions which have reached End of Technical Support EoTS are not...

5.3CVSS5.8AI score
Exploits0References1
Prion
Prion
added 2022/01/25 8:15 p.m.16 views

Code injection

In all versions before 7.2.1.4, when proxy settings are configured in the network access resource of a BIG-IP APM system, connecting BIG-IP Edge Client on Mac and Windows is vulnerable to a DNS rebinding attack. Note: Software versions which have reached End of Technical Support EoTS are not...

5CVSS5.2AI score0.00404EPSS
Exploits0References1Affected Software2
CVE
CVE
added 2022/01/25 7:11 p.m.139 views

CVE-2022-23032

CVE-2022-23032 affects BIG-IP APM Edge Client proxy handling. Concrete details from connected docs: in all versions prior to 7.2.1.4, if proxy settings are configured in the network access resource, BIG-IP Edge Client for Mac and Windows is vulnerable to a DNS rebinding attack that can expose pro...

5.3CVSS5.6AI score0.00404EPSS
Exploits0References1Affected Software2
CNVD
CNVD
added 2022/01/21 12:0 a.m.9 views

F5 BIG-IP APM Access Control Error Vulnerability (CNVD-2022-26840)

F5 BIG-IP APM is a suite of access and security solutions from F5 USA. The product provides unified access to business-critical applications and networks. F5 BIG-IP APM suffers from an Access Control Error vulnerability that arises from a connection to the BIG-IP Edge Client on Mac and Windows wh...

5.3CVSS6.7AI score0.00404EPSS
Exploits0References1
CNNVD
CNNVD
added 2022/01/19 12:0 a.m.11 views

F5 BIG-IP APM 访问控制错误漏洞

F5 BIG-IP APM is a suite of access and security solutions from F5 USA. The product provides unified access to business-critical applications and networks. F5 BIG-IP APM suffers from an Access Control Error vulnerability that arises from a connection to the BIG-IP Edge Client on Mac and Windows wh...

5.3CVSS5.8AI score0.00404EPSS
Exploits0References4
OSV
OSV
added 2022/01/12 2:15 p.m.5 views

CVE-2021-44650

Zoho ManageEngine M365 Manager Plus before Build 4419 allows remote command execution when updating proxy settings through the Admin ProxySettings and Tenant ProxySettings components...

7.2CVSS5.9AI score0.04794EPSS
Exploits0References1
CVE
CVE
added 2022/01/12 1:35 p.m.61 views

CVE-2021-44650

Zoho ManageEngine M365 Manager Plus (before Build 4419) contains a command-injection vulnerability in the ProxySettings update flow (Admin ProxySettings and Tenant ProxySettings). This allows remote command execution. Affected versions are prior to Build 4419; remediation is to upgrade to Build 4...

7.2CVSS7.2AI score0.04794EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2022/01/12 1:35 p.m.23 views

CVE-2021-44650

Zoho ManageEngine M365 Manager Plus before Build 4419 allows remote command execution when updating proxy settings through the Admin ProxySettings and Tenant ProxySettings components...

7.5AI score0.04794EPSS
Exploits0References1
CNNVD
CNNVD
added 2022/01/12 12:0 a.m.8 views

Zoho ManageEngine M365 Manager Plus 安全漏洞

Zoho ManageEngine M365 Manager Plus is an extensive Microsoft 365 tool from Zoho India. Used to report, manage, monitor, audit and create alerts for critical activities. Zoho ManageEngine M365 Manager Plus Build 4419 Prior versions of Zoho ManageEngine M365 Manager Plus have a command injection...

7.2CVSS6AI score0.04794EPSS
Exploits0References1
CNVD
CNVD
added 2021/08/31 12:0 a.m.27 views

ZOHO ManageEngine Cloud Security Plus Code Injection Vulnerability

ZOHO ManageEngine Cloud Security Plus is a log management and monitoring tool for the public cloud platform from ZOHO, Inc. A code injection vulnerability exists in ZOHO ManageEngine Cloud Security Plus, which originates from Zoho ManageEngine Cloud Security Plus before Build 4117, which can be...

8.8CVSS2AI score0.00994EPSS
Exploits0References1
NVD
NVD
added 2021/08/29 8:15 p.m.27 views

CVE-2021-40173

Zoho ManageEngine Cloud Security Plus before Build 4117 allows a CSRF attack on the server proxy settings...

8.8CVSS0.00994EPSS
Exploits0References1
OSV
OSV
added 2021/08/29 8:15 p.m.4 views

CVE-2021-40173

Zoho ManageEngine Cloud Security Plus before Build 4117 allows a CSRF attack on the server proxy settings...

8.8CVSS5.8AI score0.00994EPSS
Exploits0References1
NVD
NVD
added 2021/08/29 8:15 p.m.45 views

CVE-2021-40172

Zoho ManageEngine Log360 before Build 5219 allows a CSRF attack on proxy settings...

8.8CVSS0.00994EPSS
Exploits0References1
OSV
OSV
added 2021/08/29 8:15 p.m.13 views

CVE-2021-40172

Zoho ManageEngine Log360 before Build 5219 allows a CSRF attack on proxy settings...

8.8CVSS5.8AI score0.00994EPSS
Exploits0References1
Prion
Prion
added 2021/08/29 8:15 p.m.19 views

Cross site request forgery (csrf)

Zoho ManageEngine Cloud Security Plus before Build 4117 allows a CSRF attack on the server proxy settings...

6.8CVSS8.6AI score0.00994EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2021/08/29 7:18 p.m.45 views

CVE-2021-40172

Zoho ManageEngine Log360 before Build 5219 allows a CSRF attack on proxy settings...

8.9AI score0.00994EPSS
Exploits0References1
Rows per page
Query Builder