NotCVE - vendor:"Zohocorp"

Page 21 of 458 results (0.004 seconds)

CVSS: 7.8EPSS: 0%CPEs: 15EXPL: 0

CVE-2021-44652

https://notcve.org/view.php?id=CVE-2021-44652

Zoho ManageEngine O365 Manager Plus before Build 4416 allows remote code execution via BCP file overwrite through the ChangeDBAPI component. Zoho ManageEngine O365 Manager Plus versiones anteriores al Build 4416, permite una ejecución de código remota por medio de una sobreescritura de archivos BCP mediante el componente ChangeDBAPI • https://www.manageengine.com/microsoft-365-management-reporting/release-notes.html?Build=4416 •

CVSS: 8.8EPSS: 0%CPEs: 10EXPL: 0

CVE-2021-44651

https://notcve.org/view.php?id=CVE-2021-44651

Zoho ManageEngine CloudSecurityPlus before Build 4117 allows remote code execution through the updatePersonalizeSettings component due to an improper security patch for CVE-2021-40175. Zoho ManageEngine CloudSecurityPlus versiones anteriores al Build 4117, permite una ejecución de código remota mediante el componente updatePersonalizeSettings debido a un parche de seguridad inapropiado para CVE-2021-40175 • https://sahildhar.github.io/blogpost/Zoho-ManageEngine-CloudSecurityPlus-Remote-Code-Execution-via-Security-Misconfiguration • CWE-434: Unrestricted Upload of File with Dangerous Type •

CVSS: 7.2EPSS: 0%CPEs: 18EXPL: 0

CVE-2021-44650

https://notcve.org/view.php?id=CVE-2021-44650

Zoho ManageEngine M365 Manager Plus before Build 4419 allows remote command execution when updating proxy settings through the Admin ProxySettings and Tenant ProxySettings components. Zoho ManageEngine M365 Manager Plus versiones anteriores al Build 4419, permite una ejecución de comandos remota cuando es actualizada la configuración del proxy mediante los componentes Admin ProxySettings y Tenant ProxySettings • https://www.manageengine.com/microsoft-365-management-reporting/release-notes.html?Build=4419 •

CVSS: 8.8EPSS: 0%CPEs: 157EXPL: 0

CVE-2020-28679

https://notcve.org/view.php?id=CVE-2020-28679

A vulnerability in the showReports module of Zoho ManageEngine Applications Manager before build 14550 allows authenticated attackers to execute a SQL injection via a crafted request. Una vulnerabilidad en el módulo showReports de Zoho ManageEngine Applications Manager versiones anteriores a 14550, permite a atacantes autenticados ejecutar una inyección SQL por medio de una petición diseñada • https://www.manageengine.com/products/applications_manager/issues.html#v14550 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •

CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0

CVE-2021-46164

https://notcve.org/view.php?id=CVE-2021-46164

Zoho ManageEngine Desktop Central before 10.0.662 allows remote code execution by an authenticated user who has complete access to the Reports module. Zoho ManageEngine Desktop Central versiones anteriores a 10.0.662, permite una ejecución de código remota por parte de un usuario autenticado que tenga acceso completo al módulo de Informes • https://www.manageengine.com/products/desktop-central/vulnerabilities-in-reports-module.html •

1...19 20 21 22 23