PT-2021-23073 · Zoho · Zoho Manageengine Network Configuration Manager
Háng Dæ°Æ¡Ng TrầN
·
Published
2021-11-11
·
Updated
2023-02-22
·
CVE-2021-41080
CVSS v3.1
9.8
Critical
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Zoho ManageEngine Network Configuration Manager versions prior to 125465
Description
The issue is related to SQL Injection in the hardware details search function.
Recommendations
For versions prior to 125465, update to a version that includes the fix for this issue.
Fix
SQL injection
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Zoho Manageengine Network Configuration Manager