CVE Daily

CVE-2023-48646

Zoho ManageEngine RecoveryManager Plus before 6070 allows admin users to execute...

High CVSS 7.2

Overview

Zoho ManageEngine RecoveryManager Plus before 6070 allows admin users to execute arbitrary commands via proxy settings.

CWE: N/A Published: 2023-11-22T18:15:09.670
Risk analysis

This vulnerability is rated 🟠 HIGH.

  • CVSS: 7.2 (HIGH)
  • Detected tags: none (tag impact: LOW)

Recommended actions:

  • Prioritize remediation based on business criticality and exposure.
  • Limit exposure and increase monitoring until fixed.

Recommended tools

Tags