CVE-2021-38298: XEE
First published: Thu Oct 07 2021(Updated: )
Zoho ManageEngine ADManager Plus before 7110 is vulnerable to blind XXE.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Zohocorp ManageEngine ADManager Plus | <7.1 | |
| Zohocorp ManageEngine ADManager Plus | =7.1 | |
| Zohocorp ManageEngine ADManager Plus | =7.1-7100 | |
| Zohocorp ManageEngine ADManager Plus | =7.1-7101 | |
| Zohocorp ManageEngine ADManager Plus | =7.1-7102 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the vulnerability ID for this vulnerability?
The vulnerability ID for this vulnerability is CVE-2021-38298.
What is the severity of CVE-2021-38298?
The severity of CVE-2021-38298 is critical with a severity value of 9.8.
What is the affected software for CVE-2021-38298?
The affected software for CVE-2021-38298 is Zoho ManageEngine ADManager Plus version up to 7.1.
How can I fix the vulnerability CVE-2021-38298?
To fix the vulnerability CVE-2021-38298, update Zoho ManageEngine ADManager Plus to version 7.1 or higher.
Where can I find more information about CVE-2021-38298?
You can find more information about CVE-2021-38298 in the release notes of Zoho ManageEngine ADManager Plus version 7.1.10.
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/weakness
- agent/last-modified-date
- agent/severity
- agent/author
- agent/references
- agent/tags
- agent/description
- agent/first-publish-date
- agent/event
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/zohocorp
- canonical/zohocorp manageengine admanager plus
- version/zohocorp manageengine admanager plus/7.1
- version/zohocorp manageengine admanager plus/7.1-7100
- version/zohocorp manageengine admanager plus/7.1-7101
- version/zohocorp manageengine admanager plus/7.1-7102