| Added |
CPE Configuration |
|
Configuration 1
OR
*cpe:2.3:a:zohocorp:manageengine_social_it_plus:11.0:*:*:*:*:*:*:*
Configuration 2
OR
*cpe:2.3:a:zohocorp:manageengine_it360:10.4:*:*:*:*:*:*:*
*cpe:2.3:a:zohocorp:manageengine_it360:10.3:*:*:*:*:*:*:*
Configuration 3
OR
*cpe:2.3:a:zohocorp:manageengine_opmanager:8.8:*:*:*:*:*:*:*
*cpe:2.3:a:zohocorp:manageengine_opmanager:9.0:*:*:*:*:*:*:*
*cpe:2.3:a:zohocorp:manageengine_opmanager:9.1:*:*:*:*:*:*:*
*cpe:2.3:a:zohocorp:manageengine_opmanager:9.2:*:*:*:*:*:*:*
*cpe:2.3:a:zohocorp:manageengine_opmanager:9.4:*:*:*:*:*:*:*
*cpe:2.3:a:zohocorp:manageengine_opmanager:10.0:*:*:*:*:*:*:*
*cpe:2.3:a:zohocorp:manageengine_opmanager:10.1:*:*:*:*:*:*:*
*cpe:2.3:a:zohocorp:manageengine_opmanager:10.2:*:*:*:*:*:*:*
*cpe:2.3:a:zohocorp:manageengine_opmanager:11.0:*:*:*:*:*:*:*
*cpe:2.3:a:zohocorp:manageengine_opmanager:11.1:*:*:*:*:*:*:*
*cpe:2.3:a:zohocorp:manageengine_opmanager:11.2:*:*:*:*:*:*:*
*cpe:2.3:a:zohocorp:manageengine_opmanager:11.3:*:*:*:*:*:*:*
*cpe:2.3:a:zohocorp:manageengine_opmanager:11.4:*:*:*:*:*:*:*
|
| Added |
CVSS V2 |
|
(AV:N/AC:L/Au:N/C:P/I:P/A:P)
|
| Added |
CWE |
|
CWE-22
|
| Changed |
Reference Type |
http://seclists.org/fulldisclosure/2014/Nov/21 No Types Assigned
|
http://seclists.org/fulldisclosure/2014/Nov/21 Exploit
|
| Changed |
Reference Type |
https://raw.githubusercontent.com/pedrib/PoC/master/ManageEngine/me_opmanager_socialit_it360.txt No Types Assigned
|
https://raw.githubusercontent.com/pedrib/PoC/master/ManageEngine/me_opmanager_socialit_it360.txt Exploit
|
| Changed |
Reference Type |
https://support.zoho.com/portal/manageengine/helpcenter/articles/fix-for-remote-code-execution-via-file-upload-vulnerability No Types Assigned
|
https://support.zoho.com/portal/manageengine/helpcenter/articles/fix-for-remote-code-execution-via-file-upload-vulnerability Exploit
|
) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.
