Vulnerabilities > CVE-2021-44652 - Unspecified vulnerability in Zohocorp Manageengine O365 Manager Plus

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

local

low complexity

NVD

Published: 2022-01-12

Updated: 2022-01-25

Summary

Zoho ManageEngine O365 Manager Plus before Build 4416 allows remote code execution via BCP file overwrite through the ChangeDBAPI component.

Part	Description	Count
Application	Zohocorp Zohocorp Manageengine O365 Manager Plus 4.4 Zohocorp Manageengine O365 Manager Plus 4.0 Zohocorp Manageengine O365 Manager Plus 4.2 Zohocorp Manageengine O365 Manager Plus 4.3	45