Description
Zoho ManageEngine ADManager Plus before Build 7200 allows admin users to execute commands on the host machine.
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:HExploitability: 1.2 | Impact: 5.9Attack Vector: Network
Complexity: Low
Privileges: High
User Interaction: None
Scope: Unchanged
Confidentiality: High
Integrity: High
Availability: High
Affected Packages1 packages
🔴Vulnerability Details
3CVEListCVE-2023-38743: Zoho ManageEngine ADManager Plus before Build 7200 allows admin users to execute commands on the host machine↗2023-09-11 GHSAGHSA-fqc8-frh7-wj3f: Zoho ManageEngine ADManager Plus before Build 7200 allows admin users to execute commands on the host machine↗2023-09-11 VulnCheckZoho ManageEngine ADManager Plus Authenticated Vulnerability↗2023