Lucene search

CVE-2016-9489

🗓️ 13 Jul 2018 20:01:29Reported by certccType

ManageEngine Apps Manager 12 and 13 before build 13200 allows authenticated users to alter their properties and change other users' properties

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 4
NVD	CVE-2016-9489	13 Jul 201820:29	–	nvd
Cvelist	CVE-2016-9489 ManageEngine Applications Manager 12 and 13 is vulnerable to privilege escalation and authentication bypass	13 Jul 201820:00	–	cvelist
Prion	Default credentials	13 Jul 201820:29	–	prion
OpenVAS	ManageEngine Applications Manager < 13200 Multiple Vulnerabilities	14 Aug 201700:00	–	openvas

Nvd

Node

zohocorp manageengine_applications_managerMatch12.0

zohocorp manageengine_applications_managerMatch13.0

[
  {
    "product": "Applications Manager",
    "vendor": "ManageEngine",
    "versions": [
      {
        "status": "affected",
        "version": "12"
      },
      {
        "status": "affected",
        "version": "13"
      }
    ]
  }
]

Source	Link
seclists	www.seclists.org/fulldisclosure/2017/Apr/9
securityfocus	www.securityfocus.com/bid/97394/
manageengine	www.manageengine.com/products/applications_manager/security-updates/security-updates-cve-2016-9489.html

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

13 Jul 2018 20:29Current

8.7High risk

Vulners AI Score8.7

CVSS24

CVSS38.8

EPSS0.0042

manageengine applications manager cve-2016-9489 security vulnerability user privileges nvd