Vulnerability Details CVE-2021-43319
Zoho ManageEngine Network Configuration Manager before 125488 is vulnerable to command injection due to improper validation in the Ping functionality.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.742
EPSS Ranking 98.8%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 7.5
References
Products affected by CVE-2021-43319
-
cpe:2.3:a:zohocorp:manageengine_network_configuration_manager:11.0
-
cpe:2.3:a:zohocorp:manageengine_network_configuration_manager:12.0
-
cpe:2.3:a:zohocorp:manageengine_network_configuration_manager:12.1
-
cpe:2.3:a:zohocorp:manageengine_network_configuration_manager:12.2
-
cpe:2.3:a:zohocorp:manageengine_network_configuration_manager:12.3
-
cpe:2.3:a:zohocorp:manageengine_network_configuration_manager:12.4
-
cpe:2.3:a:zohocorp:manageengine_network_configuration_manager:12.5