Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

CVE-2022-36923

🗓️ 10 Aug 2022 14:17:09Reported by mitreType 
cve
 cve🔗 web.nvd.nist.gov📰️ 6 Media mentions👁 439 Views

Zoho ManageEngine OpManager, OpManager Plus, OpManager MSP, Network Configuration Manager, NetFlow Analyzer, Firewall Analyzer, and OpUtils before 2022-07-27 through 2022-07-28 allow unauthenticated attackers to obtain a user's API ke

Related
Detection
Refs
Social
ReporterTitlePublishedViews
Family
Circl		CVE-2022-36923
11 Aug 202200:26
circl
CNNVD		多款ZOHO ManageEngine产品安全漏洞
10 Aug 202200:00
cnnvd
Cvelist		CVE-2022-36923
10 Aug 202214:17
cvelist
EUVD		EUVD-2022-39581
3 Oct 202520:07
euvd
Tenable Nessus		ManageEngine Firewall Analyzer 12.5.x < 12.5.657 / 12.6.x < 12.6.002 / 12.6.104 / 12.6.118 Authenticate Bypass
26 Aug 202200:00
nessus
Tenable Nessus		ManageEngine Firewall Analyzer REST API Key Disclosure (CVE-2022-36923)
24 Feb 202300:00
nessus
Tenable Nessus		ManageEngine NCM 12.5.x < 12.5.657 / 12.6.x < 12.6.002 / 12.6.104 / 12.6.118 Authenticate Bypass
26 Aug 202200:00
nessus
Tenable Nessus		ManageEngine NetFlow Analyzer 12.5.x < 12.5.657 / 12.6.x < 12.6.002 / 12.6.104 / 12.6.118 Authenticate Bypass
4 Dec 202300:00
nessus
Tenable Nessus		ManageEngine OpManager 12.5.x < 12.5.657 / 12.6.x < 12.6.002 / 12.6.104 / 12.6.118 Authenticate Bypass
26 Aug 202200:00
nessus
Nuclei		Zoho ManageEngine - getUserAPIKey Authentication Bypass
6 Jun 202603:01
nuclei
Rows per page
NVD
Node
zohocorpmanageengine_firewall_analyzerMatch12.5build125450
OR
zohocorpmanageengine_firewall_analyzerMatch12.5build125451
OR
zohocorpmanageengine_firewall_analyzerMatch12.5build125452
OR
zohocorpmanageengine_firewall_analyzerMatch12.5build125453
OR
zohocorpmanageengine_firewall_analyzerMatch12.5build125455
OR
zohocorpmanageengine_firewall_analyzerMatch12.5build125456
OR
zohocorpmanageengine_firewall_analyzerMatch12.5build125664
OR
zohocorpmanageengine_firewall_analyzerMatch12.6build126000
OR
zohocorpmanageengine_firewall_analyzerMatch12.6build126001
OR
zohocorpmanageengine_firewall_analyzerMatch12.6build126100
OR
zohocorpmanageengine_firewall_analyzerMatch12.6build126101
OR
zohocorpmanageengine_firewall_analyzerMatch12.6build126102
OR
zohocorpmanageengine_firewall_analyzerMatch12.6build126103
OR
zohocorpmanageengine_firewall_analyzerMatch12.6build126113
OR
zohocorpmanageengine_firewall_analyzerMatch12.6build126114
OR
zohocorpmanageengine_firewall_analyzerMatch12.6build126115
OR
zohocorpmanageengine_firewall_analyzerMatch12.6build126116
OR
zohocorpmanageengine_firewall_analyzerMatch12.6build126117
OR
zohocorpmanageengine_netflow_analyzerMatch12.5build125450
OR
zohocorpmanageengine_netflow_analyzerMatch12.5build125451
OR
zohocorpmanageengine_netflow_analyzerMatch12.5build125452
OR
zohocorpmanageengine_netflow_analyzerMatch12.5build125453
OR
zohocorpmanageengine_netflow_analyzerMatch12.5build125455
OR
zohocorpmanageengine_netflow_analyzerMatch12.5build125456
OR
zohocorpmanageengine_netflow_analyzerMatch12.5build125664
OR
zohocorpmanageengine_netflow_analyzerMatch12.6build126000
OR
zohocorpmanageengine_netflow_analyzerMatch12.6build126001
OR
zohocorpmanageengine_netflow_analyzerMatch12.6build126100
OR
zohocorpmanageengine_netflow_analyzerMatch12.6build126101
OR
zohocorpmanageengine_netflow_analyzerMatch12.6build126102
OR
zohocorpmanageengine_netflow_analyzerMatch12.6build126103
OR
zohocorpmanageengine_netflow_analyzerMatch12.6build126113
OR
zohocorpmanageengine_netflow_analyzerMatch12.6build126114
OR
zohocorpmanageengine_netflow_analyzerMatch12.6build126115
OR
zohocorpmanageengine_netflow_analyzerMatch12.6build126116
OR
zohocorpmanageengine_netflow_analyzerMatch12.6build126117
OR
zohocorpmanageengine_network_configuration_managerMatch12.5build125450
OR
zohocorpmanageengine_network_configuration_managerMatch12.5build125451
OR
zohocorpmanageengine_network_configuration_managerMatch12.5build125452
OR
zohocorpmanageengine_network_configuration_managerMatch12.5build125453
OR
zohocorpmanageengine_network_configuration_managerMatch12.5build125455
OR
zohocorpmanageengine_network_configuration_managerMatch12.5build125456
OR
zohocorpmanageengine_network_configuration_managerMatch12.5build125664
OR
zohocorpmanageengine_network_configuration_managerMatch12.6build126000
OR
zohocorpmanageengine_network_configuration_managerMatch12.6build126001
OR
zohocorpmanageengine_network_configuration_managerMatch12.6build126100
OR
zohocorpmanageengine_network_configuration_managerMatch12.6build126101
OR
zohocorpmanageengine_network_configuration_managerMatch12.6build126102
OR
zohocorpmanageengine_network_configuration_managerMatch12.6build126103
OR
zohocorpmanageengine_network_configuration_managerMatch12.6build126113
OR
zohocorpmanageengine_network_configuration_managerMatch12.6build126114
OR
zohocorpmanageengine_network_configuration_managerMatch12.6build126115
OR
zohocorpmanageengine_network_configuration_managerMatch12.6build126116
OR
zohocorpmanageengine_network_configuration_managerMatch12.6build126117
OR
zohocorpmanageengine_opmanagerMatch12.5build125450
OR
zohocorpmanageengine_opmanagerMatch12.5build125451
OR
zohocorpmanageengine_opmanagerMatch12.5build125452
OR
zohocorpmanageengine_opmanagerMatch12.5build125453
OR
zohocorpmanageengine_opmanagerMatch12.5build125455
OR
zohocorpmanageengine_opmanagerMatch12.5build125456
OR
zohocorpmanageengine_opmanagerMatch12.5build125664
OR
zohocorpmanageengine_opmanagerMatch12.6build126000
OR
zohocorpmanageengine_opmanagerMatch12.6build126001
OR
zohocorpmanageengine_opmanagerMatch12.6build126100
OR
zohocorpmanageengine_opmanagerMatch12.6build126101
OR
zohocorpmanageengine_opmanagerMatch12.6build126102
OR
zohocorpmanageengine_opmanagerMatch12.6build126103
OR
zohocorpmanageengine_opmanagerMatch12.6build126113
OR
zohocorpmanageengine_opmanagerMatch12.6build126114
OR
zohocorpmanageengine_opmanagerMatch12.6build126115
OR
zohocorpmanageengine_opmanagerMatch12.6build126116
OR
zohocorpmanageengine_opmanagerMatch12.6build126117
OR
zohocorpmanageengine_opmanager_mspMatch12.5build125450
OR
zohocorpmanageengine_opmanager_mspMatch12.5build125656
OR
zohocorpmanageengine_opmanager_mspMatch12.5build125664
OR
zohocorpmanageengine_opmanager_mspMatch12.6build126000
OR
zohocorpmanageengine_opmanager_mspMatch12.6build126001
OR
zohocorpmanageengine_opmanager_mspMatch12.6build126100
OR
zohocorpmanageengine_opmanager_mspMatch12.6build126103
OR
zohocorpmanageengine_opmanager_mspMatch12.6build126113
OR
zohocorpmanageengine_opmanager_mspMatch12.6build126117
OR
zohocorpmanageengine_opmanager_plusMatch12.5build125450
OR
zohocorpmanageengine_opmanager_plusMatch12.5build125656
OR
zohocorpmanageengine_opmanager_plusMatch12.5build125664
OR
zohocorpmanageengine_opmanager_plusMatch12.6build126000
OR
zohocorpmanageengine_opmanager_plusMatch12.6build126001
OR
zohocorpmanageengine_opmanager_plusMatch12.6build126100
OR
zohocorpmanageengine_opmanager_plusMatch12.6build126103
OR
zohocorpmanageengine_opmanager_plusMatch12.6build126113
OR
zohocorpmanageengine_opmanager_plusMatch12.6build126117
OR
zohocorpmanageengine_oputilsMatch12.5build125450
OR
zohocorpmanageengine_oputilsMatch12.5build125451
OR
zohocorpmanageengine_oputilsMatch12.5build125452
OR
zohocorpmanageengine_oputilsMatch12.5build125453
OR
zohocorpmanageengine_oputilsMatch12.5build125455
OR
zohocorpmanageengine_oputilsMatch12.5build125456
OR
zohocorpmanageengine_oputilsMatch12.5build125664
OR
zohocorpmanageengine_oputilsMatch12.6build126000
OR
zohocorpmanageengine_oputilsMatch12.6build126001
OR
zohocorpmanageengine_oputilsMatch12.6build126100
OR
zohocorpmanageengine_oputilsMatch12.6build126101
OR
zohocorpmanageengine_oputilsMatch12.6build126102
OR
zohocorpmanageengine_oputilsMatch12.6build126103
OR
zohocorpmanageengine_oputilsMatch12.6build126113
OR
zohocorpmanageengine_oputilsMatch12.6build126114
OR
zohocorpmanageengine_oputilsMatch12.6build126115
OR
zohocorpmanageengine_oputilsMatch12.6build126116
OR
zohocorpmanageengine_oputilsMatch12.6build126117

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
24 Sep 2025 19:43Current
7.3High risk
Vulners AI Score7.3
CVSS 3.15.4 - 7.5
EPSS0.26837
SSVC
CWE-755CWE-284In Wild
zohomanageengineopmanageropmanager plusopmanager mspnetwork configuration managernetflow analyzerfirewall analyzeroputilscve-2022-36923nvdapi keyunauthenticated attackers
439