ZohoCorp ManageEngine ADManager Plus 7.2 7200

CPE Details

ZohoCorp ManageEngine ADManager Plus 7.2 7200
zohocorp
manageengine_admanager_plus
7.2
2023-07-10
14h55 +00:00
2023-07-11
14h08 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.2:7200:*:*:*:*:*:*

Informations

Vendor

zohocorp

Product

manageengine_admanager_plus

Version

7.2

Update

7200

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2024-24409 2024-11-08 08h01 +00:00 Zohocorp ManageEngine ADManager Plus versions 7203 and prior are vulnerable to Privilege Escalation in the Modify Computers option.
8.8
High
CVE-2024-48878 2024-11-04 10h56 +00:00 Zohocorp ManageEngine ADManager Plus versions 7241 and prior are vulnerable to SQL Injection in Archived Audit Report.
8.8
High
CVE-2023-6105 2023-11-15 20h57 +00:00 An information disclosure vulnerability exists in multiple ManageEngine products that can result in encryption keys being exposed. A low-privileged OS user with access to the host where an affected ManageEngine product is installed can view and use the exposed key to decrypt product database passwords. This allows the user to access the ManageEngine product database.
5.5
Medium
CVE-2023-41904 2023-09-25 22h00 +00:00 Zoho ManageEngine ADManager Plus before 7203 allows 2FA bypass (for AuthToken generation) in REST APIs.
5.4
Medium
CVE-2023-39912 2023-08-30 22h00 +00:00 Zoho ManageEngine ADManager Plus before 7203 allows Help Desk Technician users to read arbitrary files on the machine where this product is installed.
4.9
Medium
CVE-2023-38332 2023-08-03 22h00 +00:00 Zoho ManageEngine ADManager Plus through 7201 allow authenticated users to take over another user's account via sensitive information disclosure.
6.5
Medium