Vulnerability identifier: #VU75936

Vulnerability risk: Medium

CVSSv3.1: 8.2 [CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:F/RL:O/RC:C]

CVE-ID: CVE-2021-42847

CWE-ID: CWE-434

Exploitation vector: Network

Exploits in database: 1

• May 9, 2023
  • ManageEngine ADAudit Plus Authenticated File Write RCE [Metasploit]

Impact: Code execution

Vulnerable software:
Zoho ManageEngine ADAudit Plus
Server applications / Remote management servers, RDP, SSH

Vendor: