exploitDog

GHSA-v79c-w8qr-chq9

Опубликовано: 21 дек. 2021

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

Zoho ManageEngine PAM360 before build 5303 allows attackers to modify a few aspects of application state because of a filter bypass in which authentication is not required.

Zoho ManageEngine PAM360 before build 5303 allows attackers to modify a few aspects of application state because of a filter bypass in which authentication is not required.

Ссылки

EPSS

Процентиль: 73%

0.00777

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-668

Связанные уязвимости

CVE-2021-44525

CVSS3: 9.8

nvd

около 4 лет назад

Zoho ManageEngine PAM360 before build 5303 allows attackers to modify a few aspects of application state because of a filter bypass in which authentication is not required.

EPSS

Процентиль: 73%

0.00777

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-668