Security
Headlines
HeadlinesLatestCVEs

Headline

CVE-2021-41081: Network Configuration Management by ManageEngine Network Configuration Manager

Zoho ManageEngine Network Configuration Manager before ??125465 is vulnerable to SQL Injection in a configuration search.

CVE
#sql#vulnerability

CVE-2021-41081****The SQL injection vulnerability issue in configuration search has now been fixed.

Vulnerability Details

Severity

High

Reported

07 Sep 2021

Reported by

Hồng Dương Trần

Fixed

08-Sep-2021

Affected Builds

Builds 123055 - 125464

Fixed in

Builds 125465/125436/125455

Overview

The SQL injection vulnerability issue in configuration search has now been fixed.

Recommended Fix

125435 and below, please upgrade to the latest version here.
125454 and below, please upgrade to the latest version here.
Upgrade to NCM Version 12.5.465 by contacting our support team ([email protected])

Description

The SQL injection vulnerability issue in configuration search has now been fixed.

We recommend that you upgrade to NCM Version 12.5.465 by contacting our support team at [email protected]

Source and Acknowledgements

Find out more about CVE-2021-41081 from the CVE dictionary.

Need Help?

For clarification or corrections please contact our support team or email us at [email protected].

Related news

CVE-2021-41081: Network Configuration Management by ManageEngine Network Configuration Manager

Zoho ManageEngine Network Configuration Manager before ??125465 is vulnerable to SQL Injection in a configuration search.

CVE: Latest News

CVE-2023-50976: Transactions API Authorization by oleiman · Pull Request #14969 · redpanda-data/redpanda
CVE-2023-6905
CVE-2023-6903
CVE-2023-6904
CVE-2023-3907