CVE-2020-21642 · Vexday

CVE-2020-21642

EPSS 7.7%

Directory Traversal vulnerability ZDBQAREFSUBDIR parameter in /zropusermgmt API in Zoho ManageEngine Analytics Plus before 4350 allows remote attackers to run arbitrary code.

Affected products

n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://www.manageengine.com/analytics-plus/release-notes.html