What is the vulnerability ID of this issue?

The vulnerability ID of this issue is CVE-2022-42904.

What is the affected software?

The affected software is Zohocorp Manageengine Admanager Plus version up to and including 7.1-7151.

What is the severity of CVE-2022-42904?

The severity of CVE-2022-42904 is high (CVSS score: 7.2).

How can I fix the vulnerability?

To fix the vulnerability, update Zohocorp Manageengine Admanager Plus to version 7.1-7152 or later.

Vulnerability/
CVE-2022-42904

high

7.2

18/11/2022

22/11/2022

CVE-2022-42904

Q: What is the title of the vulnerability?

The title of the vulnerability is 'Zoho ManageEngine ADManager Plus through 7151 allows authenticated admin users to execute the commands in proxy settings.'

First published: Fri Nov 18 2022(Updated: )

Zoho ManageEngine ADManager Plus through 7151 allows authenticated admin users to execute the commands in proxy settings.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
Zohocorp Manageengine Admanager Plus	<7.1
Zohocorp Manageengine Admanager Plus	=7.1
Zohocorp Manageengine Admanager Plus	=7.1-7100
Zohocorp Manageengine Admanager Plus	=7.1-7101
Zohocorp Manageengine Admanager Plus	=7.1-7102
Zohocorp Manageengine Admanager Plus	=7.1-7110
Zohocorp Manageengine Admanager Plus	=7.1-7111
Zohocorp Manageengine Admanager Plus	=7.1-7112
Zohocorp Manageengine Admanager Plus	=7.1-7113
Zohocorp Manageengine Admanager Plus	=7.1-7114
Zohocorp Manageengine Admanager Plus	=7.1-7115
Zohocorp Manageengine Admanager Plus	=7.1-7116
Zohocorp Manageengine Admanager Plus	=7.1-7117
Zohocorp Manageengine Admanager Plus	=7.1-7118
Zohocorp Manageengine Admanager Plus	=7.1-7120
Zohocorp Manageengine Admanager Plus	=7.1-7121
Zohocorp Manageengine Admanager Plus	=7.1-7122
Zohocorp Manageengine Admanager Plus	=7.1-7123
Zohocorp Manageengine Admanager Plus	=7.1-7124
Zohocorp Manageengine Admanager Plus	=7.1-7125
Zohocorp Manageengine Admanager Plus	=7.1-7126
Zohocorp Manageengine Admanager Plus	=7.1-7130
Zohocorp Manageengine Admanager Plus	=7.1-7131
Zohocorp Manageengine Admanager Plus	=7.1-7140
Zohocorp Manageengine Admanager Plus	=7.1-7141
Zohocorp Manageengine Admanager Plus	=7.1-7150
Zohocorp Manageengine Admanager Plus	=7.1-7151

Never miss a vulnerability like this again

Reference Links

https://www.manageengine.com/products/ad-manager/admanager-kb/cve-2022-42904.html

Frequently Asked Questions

What is the vulnerability ID of this issue?
The vulnerability ID of this issue is CVE-2022-42904.
What is the title of the vulnerability?
The title of the vulnerability is 'Zoho ManageEngine ADManager Plus through 7151 allows authenticated admin users to execute the commands in proxy settings.'
What is the affected software?
The affected software is Zohocorp Manageengine Admanager Plus version up to and including 7.1-7151.
What is the severity of CVE-2022-42904?
The severity of CVE-2022-42904 is high (CVSS score: 7.2).
How can I fix the vulnerability?
To fix the vulnerability, update Zohocorp Manageengine Admanager Plus to version 7.1-7152 or later.

collector/nvd-index
vendor/zohocorp
canonical/zohocorp manageengine admanager plus
version/zohocorp manageengine admanager plus/7.1
version/zohocorp manageengine admanager plus/7.1-7100
version/zohocorp manageengine admanager plus/7.1-7101
version/zohocorp manageengine admanager plus/7.1-7102
version/zohocorp manageengine admanager plus/7.1-7110
version/zohocorp manageengine admanager plus/7.1-7111
version/zohocorp manageengine admanager plus/7.1-7112
version/zohocorp manageengine admanager plus/7.1-7113
version/zohocorp manageengine admanager plus/7.1-7114
version/zohocorp manageengine admanager plus/7.1-7115
version/zohocorp manageengine admanager plus/7.1-7116
version/zohocorp manageengine admanager plus/7.1-7117
version/zohocorp manageengine admanager plus/7.1-7118
version/zohocorp manageengine admanager plus/7.1-7120
version/zohocorp manageengine admanager plus/7.1-7121
version/zohocorp manageengine admanager plus/7.1-7122
version/zohocorp manageengine admanager plus/7.1-7123
version/zohocorp manageengine admanager plus/7.1-7124
version/zohocorp manageengine admanager plus/7.1-7125
version/zohocorp manageengine admanager plus/7.1-7126
version/zohocorp manageengine admanager plus/7.1-7130
version/zohocorp manageengine admanager plus/7.1-7131
version/zohocorp manageengine admanager plus/7.1-7140
version/zohocorp manageengine admanager plus/7.1-7141
version/zohocorp manageengine admanager plus/7.1-7150
version/zohocorp manageengine admanager plus/7.1-7151

CVE-2022-42904

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the vulnerability ID of this issue?

What is the title of the vulnerability?

What is the affected software?

What is the severity of CVE-2022-42904?

How can I fix the vulnerability?

Company

Resources

Contact