CVE-2020-9347 is a vulnerability in Zoho Corp Manageengine Password Manager Pro
Published on March 16, 2020

Zoho ManageEngine Password Manager Pro through 10.x has a CSV Excel Macro Injection vulnerability via a crafted name that is mishandled by the Export Passwords feature. NOTE: the vendor disputes the significance of this report because they expect CSV risk mitigation to be provided by an external application, and do not plan to add CSV constraints to their own products

NVD

Products Associated with CVE-2020-9347

Want to know whenever a new CVE is published for Zoho Corp Manageengine Password Manager Pro? stack.watch will email you.

Zoho Corp Manageengine Password Manager Pro

Exploit Probability

EPSS

2.50%

Percentile

85.10%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2020-9347 is a vulnerability in Zoho Corp Manageengine Password Manager ProPublished on March 16, 2020

Products Associated with CVE-2020-9347

Exploit Probability

CVE-2020-9347 is a vulnerability in Zoho Corp Manageengine Password Manager Pro
Published on March 16, 2020