Lucene search
K

6 matches found

ATTACKERKB
ATTACKERKB
added 2022/05/24 7:15 p.m.5 views

CVE-2022-23050

ManageEngine AppManager15 Build No:15510 allows an authenticated admin user to upload a DLL file to perform a DLL hijack attack inside the 'working' folder through the 'Upload Files / Binaries' functionality...

7.2CVSS5.8AI score0.04646EPSS
Exploits1References3
NVD
NVD
added 2022/05/24 7:15 p.m.14 views

CVE-2022-23050

ManageEngine AppManager15 Build No:15510 allows an authenticated admin user to upload a DLL file to perform a DLL hijack attack inside the 'working' folder through the 'Upload Files / Binaries' functionality...

7.2CVSS0.04646EPSS
Exploits1References2
Prion
Prion
added 2022/05/24 7:15 p.m.19 views

Design/Logic Flaw

ManageEngine AppManager15 Build No:15510 allows an authenticated admin user to upload a DLL file to perform a DLL hijack attack inside the 'working' folder through the 'Upload Files / Binaries' functionality...

6.5CVSS6.9AI score0.04646EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2022/05/24 6:2 p.m.78 views

CVE-2022-23050

CVE-2022-23050 affects ManageEngine AppManager15 Build 15510. An authenticated admin can upload a DLL via the Upload Files / Binaries function to perform a DLL hijack inside the working directory. The root cause is a permissioned upload path that allows loading of attacker DLLs; exploitation stat...

7.2CVSS6.8AI score0.04646EPSS
Exploits1References2Affected Software1
Positive Technologies
Positive Technologies
added 2022/05/24 12:0 a.m.7 views

PT-2022-15810 · Zoho · Manageengine Appmanager15

Name of the Vulnerable Software and Affected Versions: ManageEngine AppManager15 version 15510 Description: The issue allows an authenticated admin user to upload a DLL file, enabling a DLL hijack attack inside the 'working' folder through the 'Upload Files / Binaries' functionality...

7.2CVSS7.1AI score0.04646EPSS
Exploits1References7
Exploit DB
Exploit DB
added 2016/01/14 12:0 a.m.64 views

Manage Engine Application Manager 12.5 - Arbitrary Command Execution

!C:/Python27/python.exe -u Applications Manager 12.5 Arbitrary Command Execution Exploit Vendor: Zoho Corporation Pvt. Ltd. Product web page: https://www.manageengine.com Affected version: 12.5 Summary: ManageEngine Applications Manager is an application performance monitoring solution that...

7.4AI score
Exploits0
Rows per page
Query Builder