7.8
CVE-2021-44652
- EPSS 1.11%
- Published 12.01.2022 15:15:07
- Last modified 21.11.2024 06:31:19
- Source cve@mitre.org
- Teams watchlist Login
- Open Login
Zoho ManageEngine O365 Manager Plus before Build 4416 allows remote code execution via BCP file overwrite through the ChangeDBAPI component.
Data is provided by the National Vulnerability Database (NVD)
Zohocorp ≫ Manageengine O365 Manager Plus Version < 4.4
Zohocorp ≫ Manageengine O365 Manager Plus Version4.4 Update-
Zohocorp ≫ Manageengine O365 Manager Plus Version4.4 Updatebuild4400
Zohocorp ≫ Manageengine O365 Manager Plus Version4.4 Updatebuild4401
Zohocorp ≫ Manageengine O365 Manager Plus Version4.4 Updatebuild4402
Zohocorp ≫ Manageengine O365 Manager Plus Version4.4 Updatebuild4403
Zohocorp ≫ Manageengine O365 Manager Plus Version4.4 Updatebuild4406
Zohocorp ≫ Manageengine O365 Manager Plus Version4.4 Updatebuild4407
Zohocorp ≫ Manageengine O365 Manager Plus Version4.4 Updatebuild4408
Zohocorp ≫ Manageengine O365 Manager Plus Version4.4 Updatebuild4410
Zohocorp ≫ Manageengine O365 Manager Plus Version4.4 Updatebuild4411
Zohocorp ≫ Manageengine O365 Manager Plus Version4.4 Updatebuild4412
Zohocorp ≫ Manageengine O365 Manager Plus Version4.4 Updatebuild4413
Zohocorp ≫ Manageengine O365 Manager Plus Version4.4 Updatebuild4414
Zohocorp ≫ Manageengine O365 Manager Plus Version4.4 Updatebuild4415
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.11% | 0.762 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| nvd@nist.gov | 7.8 | 1.8 | 5.9 |
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
|
| nvd@nist.gov | 6.8 | 8.6 | 6.4 |
AV:N/AC:M/Au:N/C:P/I:P/A:P
|