Direct Inward Dialing: +1 408 916 9393
Vulnerability details | |
Severity | Low |
CVE ID | CVE-2022-42904 |
Affected software versions | Build 7151 and older |
Fixed version | Build 7160 |
Fixed on | September 26, 2022 |
ADManager Plus builds 7151 and older were reported to have an authenticated remote code execution vulnerability. This has been fixed in the build 7160; its release notes can be found here.
An authenticated user with admin privileges can remotely execute codes on the machine where ADManager Plus is installed.
Update your ADManager Plus instance to its latest build by installing the service pack.
This issue was reported by George Koumettou via the Zoho Bug Bounty Program.
Select a language to translate the contents of this web page:
Fill this form, and we'll contact you rightaway.
Our technical support team will get in touch with you at the earliest."