CVE-2020-24397 is a vulnerability in Zoho Corp Manageengine Desktop Central
Published on October 2, 2020

An issue was discovered in the client side of Zoho ManageEngine Desktop Central 10.0.0.SP-534. An attacker-controlled server can trigger an integer overflow in InternetSendRequestEx and InternetSendRequestByBitrate that leads to a heap-based buffer overflow and Remote Code Execution with SYSTEM privileges.

NVD

Products Associated with CVE-2020-24397

Want to know whenever a new CVE is published for Zoho Corp Manageengine Desktop Central? stack.watch will email you.

Zoho Corp Manageengine Desktop Central

Exploit Probability

EPSS

11.26%

Percentile

93.41%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2020-24397 is a vulnerability in Zoho Corp Manageengine Desktop CentralPublished on October 2, 2020

Products Associated with CVE-2020-24397

Exploit Probability

CVE-2020-24397 is a vulnerability in Zoho Corp Manageengine Desktop Central
Published on October 2, 2020