cvedb.io
CVE-2022-38772
HIGH · CVSS 8.8
EPSS exploitation probability: 0%
Published 2022-08-29T21:15:09.227 · Last modified 2026-06-17T04:57:08.653

Summary

Zoho ManageEngine OpManager, OpManager Plus, OpManager MSP, Network Configuration Manager, NetFlow Analyzer, and OpUtils before 125658, 126003, 126105, and 126120 allow authenticated users to make database changes that lead to remote code execution in the NMAP feature.

Affected products

zohocorp — manageengine_netflow_analyzer

Does this affect you?

Add your gear to cvedb and we'll alert you only when zohocorp ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.