Zoho Corporation ManageEngine Exchange Reporter Plus 5.7 5710

CPE Details

Zoho Corporation ManageEngine Exchange Reporter Plus 5.7 5710
zohocorp
manageengine_exchange_reporter_plus
5.7
2023-09-01
14h50 +00:00
2023-09-02
00h36 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:zohocorp:manageengine_exchange_reporter_plus:5.7:5710:*:*:*:*:*:*

Informations

Vendor

zohocorp

Product

manageengine_exchange_reporter_plus

Version

5.7

Update

5710

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2024-9459 2024-11-05 05h44 +00:00 Zohocorp ManageEngine Exchange Reporter Plus versions 5718 and prior are vulnerable to authenticated SQL Injection in reports module.
8.8
High
CVE-2024-6204 2024-08-30 17h10 +00:00 Zohocorp ManageEngine Exchange Reporter Plus versions before 5715 are vulnerable to SQL Injection in the reports module.
8.3
High
CVE-2024-38872 2024-07-26 17h30 +00:00 Zohocorp ManageEngine Exchange Reporter Plus versions 5717 and below are vulnerable to the authenticated SQL injection in the monitoring module.
8.8
High
CVE-2024-38871 2024-07-26 17h29 +00:00 Zohocorp ManageEngine Exchange Reporter Plus versions 5717 and below are vulnerable to the authenticated SQL injection in the reports module.
8.8
High
CVE-2024-21775 2024-02-16 14h35 +00:00 Zoho ManageEngine Exchange Reporter Plus versions 5714 and below are vulnerable to the Authenticated SQL injection in report exporting feature.
8.8
High
CVE-2023-6105 2023-11-15 20h57 +00:00 An information disclosure vulnerability exists in multiple ManageEngine products that can result in encryption keys being exposed. A low-privileged OS user with access to the host where an affected ManageEngine product is installed can view and use the exposed key to decrypt product database passwords. This allows the user to access the ManageEngine product database.
5.5
Medium