CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-28959

Zoho ManageEngine Eventlog Analyzer through 12147 is vulnerable to unauthenticated directory traversal via an entry in a ZIP archive. This leads to remote code execution.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.039

EPSS Ranking 87.7%

CVSS Severity

CVSS v3 Score 9.8

CVSS v2 Score 7.5

References

Products affected by CVE-2021-28959

Zohocorp » Manageengine Eventlog Analyzer » Version: 10.0

cpe:2.3:a:zohocorp:manageengine_eventlog_analyzer:10.0
Zohocorp » Manageengine Eventlog Analyzer » Version: 10.6

cpe:2.3:a:zohocorp:manageengine_eventlog_analyzer:10.6
Zohocorp » Manageengine Eventlog Analyzer » Version: 10.7

cpe:2.3:a:zohocorp:manageengine_eventlog_analyzer:10.7
Zohocorp » Manageengine Eventlog Analyzer » Version: 10.8

cpe:2.3:a:zohocorp:manageengine_eventlog_analyzer:10.8
Zohocorp » Manageengine Eventlog Analyzer » Version: 11.0

cpe:2.3:a:zohocorp:manageengine_eventlog_analyzer:11.0
Zohocorp » Manageengine Eventlog Analyzer » Version: 11.1

cpe:2.3:a:zohocorp:manageengine_eventlog_analyzer:11.1
Zohocorp » Manageengine Eventlog Analyzer » Version: 11.10

cpe:2.3:a:zohocorp:manageengine_eventlog_analyzer:11.10
Zohocorp » Manageengine Eventlog Analyzer » Version: 11.11

cpe:2.3:a:zohocorp:manageengine_eventlog_analyzer:11.11
Zohocorp » Manageengine Eventlog Analyzer » Version: 11.12

cpe:2.3:a:zohocorp:manageengine_eventlog_analyzer:11.12
Zohocorp » Manageengine Eventlog Analyzer » Version: 11.13

cpe:2.3:a:zohocorp:manageengine_eventlog_analyzer:11.13
Zohocorp » Manageengine Eventlog Analyzer » Version: 11.14

cpe:2.3:a:zohocorp:manageengine_eventlog_analyzer:11.14
Zohocorp » Manageengine Eventlog Analyzer » Version: 11.2

cpe:2.3:a:zohocorp:manageengine_eventlog_analyzer:11.2
Zohocorp » Manageengine Eventlog Analyzer » Version: 11.20

cpe:2.3:a:zohocorp:manageengine_eventlog_analyzer:11.20
Zohocorp » Manageengine Eventlog Analyzer » Version: 11.21

cpe:2.3:a:zohocorp:manageengine_eventlog_analyzer:11.21
Zohocorp » Manageengine Eventlog Analyzer » Version: 11.3

cpe:2.3:a:zohocorp:manageengine_eventlog_analyzer:11.3
Zohocorp » Manageengine Eventlog Analyzer » Version: 11.4

cpe:2.3:a:zohocorp:manageengine_eventlog_analyzer:11.4
Zohocorp » Manageengine Eventlog Analyzer » Version: 11.5

cpe:2.3:a:zohocorp:manageengine_eventlog_analyzer:11.5
Zohocorp » Manageengine Eventlog Analyzer » Version: 11.6

cpe:2.3:a:zohocorp:manageengine_eventlog_analyzer:11.6
Zohocorp » Manageengine Eventlog Analyzer » Version: 11.7

cpe:2.3:a:zohocorp:manageengine_eventlog_analyzer:11.7
Zohocorp » Manageengine Eventlog Analyzer » Version: 11.8

cpe:2.3:a:zohocorp:manageengine_eventlog_analyzer:11.8
Zohocorp » Manageengine Eventlog Analyzer » Version: 11.9

cpe:2.3:a:zohocorp:manageengine_eventlog_analyzer:11.9
Zohocorp » Manageengine Eventlog Analyzer » Version: 12.0.0

cpe:2.3:a:zohocorp:manageengine_eventlog_analyzer:12.0.0
Zohocorp » Manageengine Eventlog Analyzer » Version: 12.0.1

cpe:2.3:a:zohocorp:manageengine_eventlog_analyzer:12.0.1
Zohocorp » Manageengine Eventlog Analyzer » Version: 12.0.2

cpe:2.3:a:zohocorp:manageengine_eventlog_analyzer:12.0.2
Zohocorp » Manageengine Eventlog Analyzer » Version: 12.0.3

cpe:2.3:a:zohocorp:manageengine_eventlog_analyzer:12.0.3
Zohocorp » Manageengine Eventlog Analyzer » Version: 12.0.4

cpe:2.3:a:zohocorp:manageengine_eventlog_analyzer:12.0.4
Zohocorp » Manageengine Eventlog Analyzer » Version: 12.0.5

cpe:2.3:a:zohocorp:manageengine_eventlog_analyzer:12.0.5
Zohocorp » Manageengine Eventlog Analyzer » Version: 12.0.6

cpe:2.3:a:zohocorp:manageengine_eventlog_analyzer:12.0.6
Zohocorp » Manageengine Eventlog Analyzer » Version: 12.1.0

cpe:2.3:a:zohocorp:manageengine_eventlog_analyzer:12.1.0
Zohocorp » Manageengine Eventlog Analyzer » Version: 12.1.1

cpe:2.3:a:zohocorp:manageengine_eventlog_analyzer:12.1.1
Zohocorp » Manageengine Eventlog Analyzer » Version: 12.1.2

cpe:2.3:a:zohocorp:manageengine_eventlog_analyzer:12.1.2
Zohocorp » Manageengine Eventlog Analyzer » Version: 12.1.3

cpe:2.3:a:zohocorp:manageengine_eventlog_analyzer:12.1.3
Zohocorp » Manageengine Eventlog Analyzer » Version: 12.1.4

cpe:2.3:a:zohocorp:manageengine_eventlog_analyzer:12.1.4
Zohocorp » Manageengine Eventlog Analyzer » Version: 6.0

cpe:2.3:a:zohocorp:manageengine_eventlog_analyzer:6.0
Zohocorp » Manageengine Eventlog Analyzer » Version: 6.1

cpe:2.3:a:zohocorp:manageengine_eventlog_analyzer:6.1
Zohocorp » Manageengine Eventlog Analyzer » Version: 6.2

cpe:2.3:a:zohocorp:manageengine_eventlog_analyzer:6.2
Zohocorp » Manageengine Eventlog Analyzer » Version: 7.0

cpe:2.3:a:zohocorp:manageengine_eventlog_analyzer:7.0
Zohocorp » Manageengine Eventlog Analyzer » Version: 7.2

cpe:2.3:a:zohocorp:manageengine_eventlog_analyzer:7.2
Zohocorp » Manageengine Eventlog Analyzer » Version: 8.2

cpe:2.3:a:zohocorp:manageengine_eventlog_analyzer:8.2
Zohocorp » Manageengine Eventlog Analyzer » Version: 8.5

cpe:2.3:a:zohocorp:manageengine_eventlog_analyzer:8.5
Zohocorp » Manageengine Eventlog Analyzer » Version: 8.6

cpe:2.3:a:zohocorp:manageengine_eventlog_analyzer:8.6
Zohocorp » Manageengine Eventlog Analyzer » Version: 9.0

cpe:2.3:a:zohocorp:manageengine_eventlog_analyzer:9.0
Zohocorp » Manageengine Eventlog Analyzer » Version: 9.9

cpe:2.3:a:zohocorp:manageengine_eventlog_analyzer:9.9

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-28959

Products

Pricing

Contact Us