1 results (0.004 seconds)
CVSS: 8.8EPSS: 0%CPEs: 10EXPL: 0
CVSS: 8.8EPSS: 0%CPEs: 10EXPL: 0CVE-2021-44651
https://notcve.org/view.php?id=CVE-2021-44651
Zoho ManageEngine CloudSecurityPlus before Build 4117 allows remote code execution through the updatePersonalizeSettings component due to an improper security patch for CVE-2021-40175. Zoho ManageEngine CloudSecurityPlus versiones anteriores al Build 4117, permite una ejecución de código remota mediante el componente updatePersonalizeSettings debido a un parche de seguridad inapropiado para CVE-2021-40175 • https://sahildhar.github.io/blogpost/Zoho-ManageEngine-CloudSecurityPlus-Remote-Code-Execution-via-Security-Misconfiguration • CWE-434: Unrestricted Upload of File with Dangerous Type •