← Back

CVE-2021-37539

nvd nist
Published: Sep 27, 2021Modified: Jun 17, 2026

JSON object

Loading...
9.8
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Exploitability: 3.9 / Impact: 5.9
Source: NVD

Description

Zoho ManageEngine ADManager Plus before 7111 is vulnerable to unrestricted file which leads to Remote code execution.

Affected (6)

Zohocorp
1 product
Manageengine Admanager Plus
Configuration A
6 vulnerable
Vulnerable SoftwareAffected Versions
Zohocorp
Manageengine Admanager Plus
Before 7.1
Manageengine Admanager Plus
Version 7.1
Manageengine Admanager Plus
Version 7.1 7100
Manageengine Admanager Plus
Version 7.1 7101
Manageengine Admanager Plus
Version 7.1 7102
Manageengine Admanager Plus
Version 7.1 7110

Related CWEs

CWE-434
Unrestricted Upload of File with Dangerous Type
The product allows the upload or transfer of dangerous file types that are automatically processed within its environment.

References (4)

Source: cve@mitre.org
Product
Source: cve@mitre.org
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Product
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory

Timeline

No history available yet.