7.2
CVE-2021-44650
- EPSS 4.62%
- Published 12.01.2022 14:15:07
- Last modified 21.11.2024 06:31:19
- Source cve@mitre.org
- Teams watchlist Login
- Open Login
Zoho ManageEngine M365 Manager Plus before Build 4419 allows remote command execution when updating proxy settings through the Admin ProxySettings and Tenant ProxySettings components.
Data is provided by the National Vulnerability Database (NVD)
Zohocorp ≫ Manageengine M365 Manager Plus Version < 4.4
Zohocorp ≫ Manageengine M365 Manager Plus Version4.4 Update-
Zohocorp ≫ Manageengine M365 Manager Plus Version4.4 Updatebuild4400
Zohocorp ≫ Manageengine M365 Manager Plus Version4.4 Updatebuild4401
Zohocorp ≫ Manageengine M365 Manager Plus Version4.4 Updatebuild4402
Zohocorp ≫ Manageengine M365 Manager Plus Version4.4 Updatebuild4403
Zohocorp ≫ Manageengine M365 Manager Plus Version4.4 Updatebuild4406
Zohocorp ≫ Manageengine M365 Manager Plus Version4.4 Updatebuild4407
Zohocorp ≫ Manageengine M365 Manager Plus Version4.4 Updatebuild4408
Zohocorp ≫ Manageengine M365 Manager Plus Version4.4 Updatebuild4410
Zohocorp ≫ Manageengine M365 Manager Plus Version4.4 Updatebuild4411
Zohocorp ≫ Manageengine M365 Manager Plus Version4.4 Updatebuild4412
Zohocorp ≫ Manageengine M365 Manager Plus Version4.4 Updatebuild4413
Zohocorp ≫ Manageengine M365 Manager Plus Version4.4 Updatebuild4414
Zohocorp ≫ Manageengine M365 Manager Plus Version4.4 Updatebuild4415
Zohocorp ≫ Manageengine M365 Manager Plus Version4.4 Updatebuild4416
Zohocorp ≫ Manageengine M365 Manager Plus Version4.4 Updatebuild4417
Zohocorp ≫ Manageengine M365 Manager Plus Version4.4 Updatebuild4418
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 4.62% | 0.882 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| nvd@nist.gov | 7.2 | 1.2 | 5.9 |
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
|
| nvd@nist.gov | 6.5 | 8 | 6.4 |
AV:N/AC:L/Au:S/C:P/I:P/A:P
|