CPE-EBCBE05C-BE6D-46BD-9312-E235301706E0 Detail

CPE Details

Zoho Corporation ManageEngine ADAudit Plus 7.2 7215

Vendor

zohocorp

Product

manageengine_adaudit_plus

Version

7.2

Created

2023-09-01
13h26 +00:00

Modified

2023-09-02
00h36 +00:00

Official links

CPE NVD

Alerte pour un CPE

Stay informed of any changes for a specific CPE.

Notifications manage

List of Notifications

Alerte pour un CPE

Stay informed of any changes for a specific CPE.

Parameters

You can specify a title that will be retrieved in the alerts that will be sent out.

CPE ID

Planning

Month

Next run calculation

Day

Weekday

Hour

Minute

Creation date

Last execution

Next execution

Functionality requiring a connection

This feature, which allows you to receive alerts, is only active when you are logged into your account.

CPE Name: cpe:2.3:a:zohocorp:manageengine_adaudit_plus:7.2:7215::::::

Informations

Vendor

zohocorp

Product

manageengine_adaudit_plus

Version

7.2

Update

7215

Related CVE

Open and find in CVE List

CVE ID	Published	Description	Score	Severity
CVE-2024-49574	2024-11-18 07h55 +00:00	Zohocorp ManageEngine ADAudit Plus versions below 8123 are vulnerable to SQL Injection in the reports module.	8.8	High
CVE-2024-36485	2024-11-04 11h13 +00:00	Zohocorp ManageEngine ADAudit Plus versions below 8121 are vulnerable to SQL Injection in Technician reports option.	8.8	High
CVE-2024-5608	2024-10-24 11h42 +00:00	Zohocorp ManageEngine ADAudit Plus versions below 8121 are vulnerable to SQL Injection in the technician reports feature.	8.3	High
CVE-2024-5586	2024-08-23 13h54 +00:00	Zohocorp ManageEngine ADAudit Plus versions below 8121 are vulnerable to the authenticated SQL injection in extranet lockouts report option.	8.8	High
CVE-2024-5556	2024-08-23 13h52 +00:00	Zohocorp ManageEngine ADAudit Plus versions below 8000 are vulnerable to the authenticated SQL injection in reports module.	8.8	High
CVE-2024-5490	2024-08-23 13h44 +00:00	Zohocorp ManageEngine ADAudit Plus versions below 8000 are vulnerable to the authenticated SQL injection in aggregate reports option.	8.8	High
CVE-2024-36514	2024-08-23 13h37 +00:00	Zohocorp ManageEngine ADAudit Plus versions below 8000 are vulnerable to the authenticated SQL injection in file summary option.	8.8	High
CVE-2024-36515	2024-08-23 13h37 +00:00	Zohocorp ManageEngine ADAudit Plus versions below 8000 are vulnerable to the authenticated SQL injection in dashboard. Note: This vulnerability is different from another vulnerability (CVE-2024-36516), both of which have affected ADAudit Plus' dashboard.	8.8	High
CVE-2024-36516	2024-08-23 13h36 +00:00	Zohocorp ManageEngine ADAudit Plus versions below 8000 are vulnerable to the authenticated SQL injection in dashboard. Note: This vulnerability is different from another vulnerability (CVE-2024-36515), both of which have affected ADAudit Plus' dashboard.	8.8	High
CVE-2024-36517	2024-08-23 13h34 +00:00	Zohocorp ManageEngine ADAudit Plus versions below 8000 are vulnerable to the authenticated SQL injection in alerts module.	8.8	High
CVE-2024-5467	2024-08-23 13h28 +00:00	Zohocorp ManageEngine ADAudit Plus versions below 8121 are vulnerable to the authenticated SQL injection in account lockout report.	8.8	High
CVE-2024-36034	2024-08-12 07h23 +00:00	Zohocorp ManageEngine ADAudit Plus versions below 8003 are vulnerable to authenticated SQL Injection in aggregate reports' search option.	8.8	High
CVE-2024-36035	2024-08-12 07h19 +00:00	Zohocorp ManageEngine ADAudit Plus versions below 8003 are vulnerable to authenticated SQL Injection in user session recording.	8.8	High
CVE-2024-36518	2024-08-12 07h13 +00:00	Zohocorp ManageEngine ADAudit Plus versions below 8110 are vulnerable to authenticated SQL Injection in attack surface analyzer's dashboard.	8.3	High
CVE-2024-5487	2024-08-12 07h04 +00:00	Zohocorp ManageEngine ADAudit Plus versions below 8110 are vulnerable to authenticated SQL Injection in attack surface analyzer's export option.	8.8	High
CVE-2024-5527	2024-08-12 05h31 +00:00	Zohocorp ManageEngine ADAudit Plus versions below 8110 are vulnerable to authenticated SQL Injection in file auditing configuration.	8.8	High
CVE-2024-36037	2024-05-27 17h59 +00:00	Zoho ManageEngine ADAudit Plus versions 7260 and below allows unauthorized local agent machine users to view the session recordings.	5.5	Medium
CVE-2024-0269	2024-02-02 13h05 +00:00	ManageEngine ADAudit Plus versions 7270 and below are vulnerable to the Authenticated SQL injection in File-Summary DrillDown. This issue has been fixed and released in version 7271.	8.8	High
CVE-2024-0253	2024-02-02 12h50 +00:00	ManageEngine ADAudit Plus versions 7270 and below are vulnerable to the Authenticated SQL injection in home Graph-Data.	8.8	High
CVE-2023-48792	2024-02-01 23h00 +00:00	Zoho ManageEngine ADAudit Plus through 7250 is vulnerable to SQL Injection in the report export option.	9.8	Critical
CVE-2023-48793	2024-02-01 23h00 +00:00	Zoho ManageEngine ADAudit Plus through 7250 allows SQL Injection in the aggregate report feature.	9.8	Critical
CVE-2023-50785	2024-01-24 23h00 +00:00	Zoho ManageEngine ADAudit Plus before 7270 allows admin users to view names of arbitrary directories via path traversal.	2.7	Low
CVE-2023-6105	2023-11-15 20h57 +00:00	An information disclosure vulnerability exists in multiple ManageEngine products that can result in encryption keys being exposed. A low-privileged OS user with access to the host where an affected ManageEngine product is installed can view and use the exposed key to decrypt product database passwords. This allows the user to access the ManageEngine product database.	5.5	Medium

Zoho Corporation ManageEngine ADAudit Plus 7.2 7215

CPE Details

CPE Name: cpe:2.3:a:zohocorp:manageengine_adaudit_plus:7.2:7215:*:*:*:*:*:*

Informations

Vendor

Product

Version

Update

Related CVE

CPE Name: cpe:2.3:a:zohocorp:manageengine_adaudit_plus:7.2:7215::::::