Lucene search
China National Vulnerability DatabaseCNVD-2023-02270HistoryNov 23, 2022 - 12:00 a.m.
ZOHO ManageEngine ADManager Plus has a command execution vulnerability
2022-11-2300:00:00
China National Vulnerability Database
www.cnvd.org.cn
23
zoho
manageengine
admanager plus
microsoft active directory
usa
enterprise users
security vulnerability
versions
command execution
agent settings
EPSS
0.001
Percentile
45.2%
ZOHO ManageEngine ADManager Plus is a suite of Microsoft Active Directory management software from ZOHO, USA, designed for enterprise users using Windows domains. The software assists AD administrators and help desk technicians with day-to-day administrative tasks such as bulk management of user accounts and AD objects, assigning role-based access to help desk technicians, etc. A security vulnerability exists in versions of ZOHO ManageEngine ADManager Plus prior to 7.1. An authenticated attacker can use this vulnerability to execute commands in agent settings.
Related
nvd
nvd
CVE-2022-42904
2022-11-18 21:15:11
prion
prion
Command injection
2022-11-18 21:15:00
cvelist
cvelist
CVE-2022-42904
2022-11-18 00:00:00
cve
cve
CVE-2022-42904
2022-11-18 21:15:11