Zoho ManageEngine Password Manager Pro/OPManager access control

A vulnerability has been found in Zoho ManageEngine Password Manager Pro and OPManager (Network Management Software) (affected version unknown) and classified as critical. Affected by this vulnerability is an unknown function. There is no information about possible countermeasures known. It may be suggested to replace the affected object with an alternative product.

Field07/19/2022 11:16 AM08/06/2022 01:44 PM08/11/2022 09:41 AM
vendorManageEngineManageEngineZoho ManageEngine
namePassword Manager Pro/OPManagerPassword Manager Pro/OPManagerPassword Manager Pro/OPManager
cwe284 (access control)284 (access control)284 (access control)
risk222
cvss3_vuldb_acLLL
cvss3_vuldb_sUUU
cvss3_vuldb_cLLL
cvss3_vuldb_iLLL
cvss3_vuldb_aLLL
cvss3_vuldb_rcCCC
urlhttps://www.manageengine.com/itom/advisory/cve-2022-35404.htmlhttps://www.manageengine.com/itom/advisory/cve-2022-35404.htmlhttps://www.manageengine.com/itom/advisory/cve-2022-35404.html
cveCVE-2022-35404CVE-2022-35404CVE-2022-35404
cve_assigned1657231200 (07/08/2022)1657231200 (07/08/2022)1657231200 (07/08/2022)
cve_nvd_summaryManageEngine Password Manager Pro 12100 and prior and OPManager 126100 and prior are vulnerable to unauthorized file and directory creation on a server machine.ManageEngine Password Manager Pro 12100 and prior and OPManager 126100 and prior are vulnerable to unauthorized file and directory creation on a server machine.ManageEngine Password Manager Pro 12100 and prior and OPManager 126100 and prior are vulnerable to unauthorized file and directory creation on a server machine.
date1658181600 (07/19/2022)1658181600 (07/19/2022)1658181600 (07/19/2022)
typeNetwork Management SoftwareNetwork Management SoftwareNetwork Management Software
cvss2_vuldb_acLLL
cvss2_vuldb_ciPPP
cvss2_vuldb_iiPPP
cvss2_vuldb_aiPPP
cvss2_vuldb_rcCCC
cvss2_vuldb_avAAA
cvss2_vuldb_auSSS
cvss2_vuldb_eNDNDND
cvss2_vuldb_rlNDNDND
cvss3_vuldb_avAAA
cvss3_vuldb_prLLL
cvss3_vuldb_uiNNN
cvss3_vuldb_eXXX
cvss3_vuldb_rlXXX
cvss2_vuldb_basescore5.25.25.2
cvss2_vuldb_tempscore5.25.25.2
cvss3_vuldb_basescore5.55.55.5
cvss3_vuldb_tempscore5.55.55.5
cvss3_meta_basescore5.56.86.8
cvss3_meta_tempscore5.56.86.8
price_0day$0-$5k$0-$5k$0-$5k
cvss3_nvd_avNN
cvss3_nvd_acLL
cvss3_nvd_prNN
cvss3_nvd_uiNN
cvss3_nvd_sUU
cvss3_nvd_cNN
cvss3_nvd_iLL
cvss3_nvd_aHH
cvss3_nvd_basescore8.28.2

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!