CVE-2023-48646

Zoho ManageEngine RecoveryManager Plus before 6070 allows admin users to execute arbitrary commands via proxy settings.

Published: Nov 22, 2023
Updated: Dec 2, 2023
CVE: CVE-2023-48646
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 7.2
AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
zohocorp / manageengine_recoverymanager_plus	-	6.0
zohocorp / manageengine_recoverymanager_plus	6.0-build6016	6.0-build6016.x
zohocorp / manageengine_recoverymanager_plus	6.0-build6001	6.0-build6001.x
zohocorp / manageengine_recoverymanager_plus	6.0-build6003	6.0-build6003.x
zohocorp / manageengine_recoverymanager_plus	6.0-build6005	6.0-build6005.x
zohocorp / manageengine_recoverymanager_plus	6.0-build6011	6.0-build6011.x
zohocorp / manageengine_recoverymanager_plus	6.0-build6017	6.0-build6017.x
zohocorp / manageengine_recoverymanager_plus	6.0-build6020	6.0-build6020.x
zohocorp / manageengine_recoverymanager_plus	6.0-build6025	6.0-build6025.x
zohocorp / manageengine_recoverymanager_plus	6.0-build6026	6.0-build6026.x
zohocorp / manageengine_recoverymanager_plus	6.0-build6030	6.0-build6030.x
zohocorp / manageengine_recoverymanager_plus	6.0-build6031	6.0-build6031.x
zohocorp / manageengine_recoverymanager_plus	6.0-build6032	6.0-build6032.x
zohocorp / manageengine_recoverymanager_plus	6.0-build6041	6.0-build6041.x
zohocorp / manageengine_recoverymanager_plus	6.0-build6042	6.0-build6042.x
zohocorp / manageengine_recoverymanager_plus	6.0-build6043	6.0-build6043.x
zohocorp / manageengine_recoverymanager_plus	6.0-build6044	6.0-build6044.x
zohocorp / manageengine_recoverymanager_plus	6.0-build6047	6.0-build6047.x
zohocorp / manageengine_recoverymanager_plus	6.0-build6049	6.0-build6049.x
zohocorp / manageengine_recoverymanager_plus	6.0-build6050	6.0-build6050.x
zohocorp / manageengine_recoverymanager_plus	6.0-build6051	6.0-build6051.x
zohocorp / manageengine_recoverymanager_plus	6.0-build6053	6.0-build6053.x
zohocorp / manageengine_recoverymanager_plus	6.0-build6054	6.0-build6054.x
zohocorp / manageengine_recoverymanager_plus	6.0-build6056	6.0-build6056.x
zohocorp / manageengine_recoverymanager_plus	6.0-build6057	6.0-build6057.x
zohocorp / manageengine_recoverymanager_plus	6.0-build6058	6.0-build6058.x
zohocorp / manageengine_recoverymanager_plus	6.0-build6060	6.0-build6060.x
zohocorp / manageengine_recoverymanager_plus	6.0-build6061	6.0-build6061.x
zohocorp / manageengine_recoverymanager_plus	6.0-build6062	6.0-build6062.x

https://www.manageengine.com/ad-recovery-manager/advisory/CVE-2023-48646.html

Vulnerability Database

289,784

CVE-2023-48646