CVE-2020-9347 is a vulnerability in Zoho Corp Manageengine Password Manager Pro
Published on March 16, 2020
Zoho ManageEngine Password Manager Pro through 10.x has a CSV Excel Macro Injection vulnerability via a crafted name that is mishandled by the Export Passwords feature. NOTE: the vendor disputes the significance of this report because they expect CSV risk mitigation to be provided by an external application, and do not plan to add CSV constraints to their own products
Products Associated with CVE-2020-9347
You can be notified by email with stack.watch whenever vulnerabilities like CVE-2020-9347 are published in Zoho Corp Manageengine Password Manager Pro:
Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.