CVE-2021-37539
https://notcve.org/view.php?id=CVE-2021-37539
Zoho ManageEngine ADManager Plus before 7111 is vulnerable to unrestricted file which leads to Remote code execution. Zoho ManageEngine ADManager Plus versiones anteriores a 7111, es vulnerable a un archivo sin restricciones que conlleva a una ejecución de código remota • https://www.manageengine.com https://www.manageengine.com/products/ad-manager/release-notes.html#7111 • CWE-434: Unrestricted Upload of File with Dangerous Type •
CVE-2021-37927
https://notcve.org/view.php?id=CVE-2021-37927
Zoho ManageEngine ADManager Plus version 7110 and prior allows account takeover via SSO. Zoho ManageEngine ADManager Plus versión 7110 y anteriores, permite una toma de control de cuentas por medio de SSO • https://www.manageengine.com https://www.manageengine.com/products/ad-manager/release-notes.html#7111 https://www.manageengine.com/products/self-service-password/release-notes.html#6110 • CWE-347: Improper Verification of Cryptographic Signature •
CVE-2021-37925
https://notcve.org/view.php?id=CVE-2021-37925
Zoho ManageEngine ADManager Plus version 7110 and prior has a Post-Auth OS command injection vulnerability. Zoho ManageEngine ADManager Plus versión 7110 y anteriores, presenta una vulnerabilidad de inyección de comandos Post-Auth OS • https://www.manageengine.com https://www.manageengine.com/products/ad-manager/release-notes.html#7111 • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •
CVE-2021-37741
https://notcve.org/view.php?id=CVE-2021-37741
ManageEngine ADManager Plus before 7111 has Pre-authentication RCE vulnerabilities. ManageEngine ADManager Plus versiones anteriores a 7111, presenta vulnerabilidades de RCE de pre-autenticación • https://www.manageengine.com https://www.manageengine.com/products/ad-manager/release-notes.html#7111 • CWE-434: Unrestricted Upload of File with Dangerous Type •
CVE-2021-33911
https://notcve.org/view.php?id=CVE-2021-33911
Zoho ManageEngine ADManager Plus before 7110 allows remote code execution. Zoho ManageEngine ADManager Plus versiones anteriores a 7110, permite una ejecución de código remota • https://www.manageengine.com/products/ad-manager/release-notes.html#7110 •