CVE Daily

CVE-2021-44650

Zoho ManageEngine M365 Manager Plus before Build 4419 allows remote command exec...

High CVSS 7.2

Overview

Zoho ManageEngine M365 Manager Plus before Build 4419 allows remote command execution when updating proxy settings through the Admin ProxySettings and Tenant ProxySettings components.

CWE: N/A Published: 2022-01-12T14:15:07.557
Risk analysis

This vulnerability is rated 🟠 HIGH.

  • CVSS: 7.2 (HIGH)
  • Detected tags: none (tag impact: LOW)

Recommended actions:

  • Prioritize remediation based on business criticality and exposure.
  • Limit exposure and increase monitoring until fixed.

Recommended tools

Tags