- Description
- Zohocorp ManageEngine PAM360 version 6601 is vulnerable to authorization vulnerability which allows a low-privileged user to perform admin actions. Note: This vulnerability affects only the PAM360 6600 version. No other versions are applicable to this vulnerability.
- Source
- 0fc0942c-577d-436f-ae8e-945763c79b02
- NVD status
- Analyzed
CVSS 3.1
- Type
- Primary
- Base score
- 8.1
- Impact score
- 5.2
- Exploitability score
- 2.8
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
- Severity
- HIGH
- Hype score
- Not currently trending
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:zohocorp:manageengine_pam360:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A74091A8-ECA2-45B3-90DF-9C6EA9629DF8",
"versionEndExcluding": "6.6"
},
{
"criteria": "cpe:2.3:a:zohocorp:manageengine_pam360:6.6:build6600:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5BB6E490-C39A-4E90-A01B-DB3239106E9F"
}
],
"operator": "OR"
}
]
}
]