CVE-2024-36038

🗓️ 24 Jun 2024 11:45:11Reported by ManageEngineType

Zoho ManageEngine ITOM products affected by stored cross-site scripting vulnerabilit

Reporter	Title	Published	Views	Family All 7
CNNVD	ZOHO ManageEngine ITOM Cross-Site Scripting Vulnerability	24 Jun 202400:00	–	cnnvd
Cvelist	CVE-2024-36038 Stored XSS	24 Jun 202411:45	–	cvelist
EUVD	EUVD-2024-35850	3 Oct 202520:07	–	euvd
Tenable Nessus	ManageEngine OpManager XSS (CVE-2024-36038)	27 Jun 202400:00	–	nessus
NVD	CVE-2024-36038	24 Jun 202412:15	–	nvd
RedhatCVE	CVE-2024-36038	23 May 202509:30	–	redhatcve
Vulnrichment	CVE-2024-36038 Stored XSS	24 Jun 202411:45	–	vulnrichment

[
  {
    "collectionURL": "https://www.manageengine.com/network-monitoring/download.html",
    "cpes": [
      "cpe:2.3:a:zohocorp:manageengine_opmanager_plus:12.8:build128248:*:*:*:*:*:*"
    ],
    "defaultStatus": "unaffected",
    "platforms": [
      "Windows",
      "Linux"
    ],
    "product": "OpManager",
    "vendor": "ManageEngine",
    "versions": [
      {
        "lessThan": "128248",
        "status": "affected",
        "version": "128234",
        "versionType": "128248"
      }
    ]
  }
]

Source	Link
manageengine	www.manageengine.com/itom/advisory/cve-2024-36038.html

15 Apr 2026 00:35Current

5.9Medium risk

Vulners AI Score5.9

CVSS 3.16.3

EPSS0.00133

SSVC

CWE-79