Lucene search
China National Vulnerability DatabaseCNVD-2021-67513HistoryAug 31, 2021 - 12:00 a.m.
ZOHO ManageEngine Log360 Input Validation Error Vulnerability
2021-08-3100:00:00
China National Vulnerability Database
www.cnvd.org.cn
7
zoho manageengine
log360
input validation
vulnerability
security threats
active directory
auditing
attack attempts
regulatory requirements
code execution
EPSS
0.084
Percentile
94.4%
ZOHO ManageEngine Log360 is an integrated log management and Active Directory auditing and alerting solution from ZOHO USA. The solution helps you mitigate security threats, detect persistent attack attempts, detect suspicious user activity, and comply with regulatory requirements.An input validation error vulnerability exists in ZOHO ManageEngine Log360, which stems from the product’s failure to securely inspect the content of uploaded files. An attacker could upload a malicious file and cause code execution through this vulnerability.
Related
cve
cve
CVE-2021-40175
2021-08-29 20:15:07
CVE-2021-44651
2022-01-12 15:15:07
cvelist
cvelist
CVE-2021-40175
2021-08-29 19:17:47
CVE-2021-44651
2022-01-12 14:44:54
prion
prion
Unrestricted file upload
2021-08-29 20:15:00
Input validation
2022-01-12 15:15:00
nvd
nvd
CVE-2021-40175
2021-08-29 20:15:07
CVE-2021-44651
2022-01-12 15:15:07