CVE-2021-41288 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	9.8 CRITICAL	NETWORK	LOW	NONE	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
mitre	CNA	---				---
CVE	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 95%

Vendor	Product	Version
zohocorp	manageengine_opmanager	𝑥 ≤ 12.4
zohocorp	manageengine_opmanager	12.5
zohocorp	manageengine_opmanager	12.5:build125000
zohocorp	manageengine_opmanager	12.5:build125002
zohocorp	manageengine_opmanager	12.5:build125100
zohocorp	manageengine_opmanager	12.5:build125101
zohocorp	manageengine_opmanager	12.5:build125102
zohocorp	manageengine_opmanager	12.5:build125108
zohocorp	manageengine_opmanager	12.5:build125110
zohocorp	manageengine_opmanager	12.5:build125111
zohocorp	manageengine_opmanager	12.5:build125112
zohocorp	manageengine_opmanager	12.5:build125113
zohocorp	manageengine_opmanager	12.5:build125114
zohocorp	manageengine_opmanager	12.5:build125116
zohocorp	manageengine_opmanager	12.5:build125117
zohocorp	manageengine_opmanager	12.5:build125118
zohocorp	manageengine_opmanager	12.5:build125120
zohocorp	manageengine_opmanager	12.5:build125121
zohocorp	manageengine_opmanager	12.5:build125123
zohocorp	manageengine_opmanager	12.5:build125124
zohocorp	manageengine_opmanager	12.5:build125125
zohocorp	manageengine_opmanager	12.5:build125136
zohocorp	manageengine_opmanager	12.5:build125137
zohocorp	manageengine_opmanager	12.5:build125139
zohocorp	manageengine_opmanager	12.5:build125140
zohocorp	manageengine_opmanager	12.5:build125143
zohocorp	manageengine_opmanager	12.5:build125144
zohocorp	manageengine_opmanager	12.5:build125145
zohocorp	manageengine_opmanager	12.5:build125156
zohocorp	manageengine_opmanager	12.5:build125157
zohocorp	manageengine_opmanager	12.5:build125158
zohocorp	manageengine_opmanager	12.5:build125159
zohocorp	manageengine_opmanager	12.5:build125161
zohocorp	manageengine_opmanager	12.5:build125163
zohocorp	manageengine_opmanager	12.5:build125174
zohocorp	manageengine_opmanager	12.5:build125175
zohocorp	manageengine_opmanager	12.5:build125176
zohocorp	manageengine_opmanager	12.5:build125177
zohocorp	manageengine_opmanager	12.5:build125178
zohocorp	manageengine_opmanager	12.5:build125180
zohocorp	manageengine_opmanager	12.5:build125181
zohocorp	manageengine_opmanager	12.5:build125192
zohocorp	manageengine_opmanager	12.5:build125193
zohocorp	manageengine_opmanager	12.5:build125194
zohocorp	manageengine_opmanager	12.5:build125195
zohocorp	manageengine_opmanager	12.5:build125196
zohocorp	manageengine_opmanager	12.5:build125197
zohocorp	manageengine_opmanager	12.5:build125198
zohocorp	manageengine_opmanager	12.5:build125201
zohocorp	manageengine_opmanager	12.5:build125204
zohocorp	manageengine_opmanager	12.5:build125212
zohocorp	manageengine_opmanager	12.5:build125213
zohocorp	manageengine_opmanager	12.5:build125214
zohocorp	manageengine_opmanager	12.5:build125215
zohocorp	manageengine_opmanager	12.5:build125216
zohocorp	manageengine_opmanager	12.5:build125228
zohocorp	manageengine_opmanager	12.5:build125229
zohocorp	manageengine_opmanager	12.5:build125230
zohocorp	manageengine_opmanager	12.5:build125231
zohocorp	manageengine_opmanager	12.5:build125232
zohocorp	manageengine_opmanager	12.5:build125233
zohocorp	manageengine_opmanager	12.5:build125312
zohocorp	manageengine_opmanager	12.5:build125323
zohocorp	manageengine_opmanager	12.5:build125324
zohocorp	manageengine_opmanager	12.5:build125326
zohocorp	manageengine_opmanager	12.5:build125328
zohocorp	manageengine_opmanager	12.5:build125329
zohocorp	manageengine_opmanager	12.5:build125340
zohocorp	manageengine_opmanager	12.5:build125341
zohocorp	manageengine_opmanager	12.5:build125342
zohocorp	manageengine_opmanager	12.5:build125343
zohocorp	manageengine_opmanager	12.5:build125344
zohocorp	manageengine_opmanager	12.5:build125346
zohocorp	manageengine_opmanager	12.5:build125358
zohocorp	manageengine_opmanager	12.5:build125359
zohocorp	manageengine_opmanager	12.5:build125360
zohocorp	manageengine_opmanager	12.5:build125361
zohocorp	manageengine_opmanager	12.5:build125362
zohocorp	manageengine_opmanager	12.5:build125364
zohocorp	manageengine_opmanager	12.5:build125366
zohocorp	manageengine_opmanager	12.5:build125367
zohocorp	manageengine_opmanager	12.5:build125375
zohocorp	manageengine_opmanager	12.5:build125376
zohocorp	manageengine_opmanager	12.5:build125377
zohocorp	manageengine_opmanager	12.5:build125378
zohocorp	manageengine_opmanager	12.5:build125379
zohocorp	manageengine_opmanager	12.5:build125380
zohocorp	manageengine_opmanager	12.5:build125381
zohocorp	manageengine_opmanager	12.5:build125382
zohocorp	manageengine_opmanager	12.5:build125386
zohocorp	manageengine_opmanager	12.5:build125392
zohocorp	manageengine_opmanager	12.5:build125393
zohocorp	manageengine_opmanager	12.5:build125394
zohocorp	manageengine_opmanager	12.5:build125397
zohocorp	manageengine_opmanager	12.5:build125398
zohocorp	manageengine_opmanager	12.5:build125399
zohocorp	manageengine_opmanager	12.5:build125405
zohocorp	manageengine_opmanager	12.5:build125410
zohocorp	manageengine_opmanager	12.5:build125411
zohocorp	manageengine_opmanager	12.5:build125413
zohocorp	manageengine_opmanager	12.5:build125414
zohocorp	manageengine_opmanager	12.5:build125415
zohocorp	manageengine_opmanager	12.5:build125416
zohocorp	manageengine_opmanager	12.5:build125417
zohocorp	manageengine_opmanager	12.5:build125420
zohocorp	manageengine_opmanager	12.5:build125428
zohocorp	manageengine_opmanager	12.5:build125430
zohocorp	manageengine_opmanager	12.5:build125431
zohocorp	manageengine_opmanager	12.5:build125432
zohocorp	manageengine_opmanager	12.5:build125433
zohocorp	manageengine_opmanager	12.5:build125434
zohocorp	manageengine_opmanager	12.5:build125437
zohocorp	manageengine_opmanager	12.5:build125446
zohocorp	manageengine_opmanager	12.5:build125448
zohocorp	manageengine_opmanager	12.5:build125450
zohocorp	manageengine_opmanager	12.5:build125451
zohocorp	manageengine_opmanager	12.5:build125452
zohocorp	manageengine_opmanager	12.5:build125453
zohocorp	manageengine_opmanager	12.5:build125455
zohocorp	manageengine_opmanager	12.5:build125466

𝑥

= Vulnerable software versions

Common Weakness Enumeration

CWE-89 - Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
The software constructs all or part of an SQL command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended SQL command when it is sent to a downstream component.

References

https://www.manageengine.com/network-monitoring/help/read-me-complete.html#build_125467