Zohocorp: Security Vulnerabilities
Zoho ManageEngine ADManager Plus version 7110 and prior is vulnerable to unrestricted file upload, leading to remote code execution.
CVSS Score
9.8
EPSS Score
0.374
Published
2021-09-27
Zoho ManageEngine ADManager Plus before 7111 is vulnerable to unrestricted file which leads to Remote code execution.
CVSS Score
9.8
EPSS Score
0.382
Published
2021-09-27
Zoho ManageEngine ADManager Plus version 7110 and prior has a Post-Auth OS command injection vulnerability.
CVSS Score
9.8
EPSS Score
0.218
Published
2021-09-22
Zoho ManageEngine ADManager Plus version 7110 and prior allows account takeover via SSO.
CVSS Score
9.8
EPSS Score
0.003
Published
2021-09-22
Zoho ManageEngine ADSelfService Plus before 6112 is vulnerable to SSRF.
CVSS Score
7.5
EPSS Score
0.077
Published
2021-09-21
Zoho ManageEngine ADSelfService Plus before 6112 is vulnerable to mail spoofing.
CVSS Score
6.5
EPSS Score
0.01
Published
2021-09-21
ManageEngine ADSelfService Plus before 6112 is vulnerable to domain user account takeover.
CVSS Score
9.8
EPSS Score
0.123
Published
2021-09-21
ManageEngine ADManager Plus before 7111 has Pre-authentication RCE vulnerabilities.
CVSS Score
8.8
EPSS Score
0.054
Published
2021-09-21
Zoho ManageEngine ADSelfService Plus 6111 and prior is vulnerable to SQL Injection while linking the databases.
CVSS Score
9.8
EPSS Score
0.045
Published
2021-09-10
Zoho ManageEngine ADSelfService Plus 6111 and prior is vulnerable to linked applications takeover.
CVSS Score
9.8
EPSS Score
0.025
Published
2021-09-10