Lucene search
ManageEngineCVE-2024-38868HistoryAug 30, 2024 - 6:15 p.m.
CVE-2024-38868
2024-08-3018:15:06
CWE-863
ManageEngine
web.nvd.nist.gov
29
zohocorp
manageengine
endpoint central
incorrect authorization
vulnerability
CVSS3
8.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H
AI Score
7
Confidence
High
EPSS
0.003
Percentile
71.5%
Zohocorp ManageEngine Endpoint Central affected byΒ Incorrect authorization vulnerability while isolating the devices.This issue affects Endpoint Central: before 11.3.2406.08 and before 11.3.2400.15
Affected configurations
Node
zohocorpmanageengine_endpoint_centralRange<11.3.2400.15
ORzohocorpmanageengine_endpoint_centralRange11.3.2401.05β11.3.2406.08
| Vendor | Product | Version | CPE |
|---|---|---|---|
| zohocorp | manageengine_endpoint_central | * | cpe:2.3:a:zohocorp:manageengine_endpoint_central:*:*:*:*:*:*:*:* |
CNA Affected
[
{
"collectionURL": "https://www.manageengine.com/?pos=EndpointCentral",
"defaultStatus": "unaffected",
"product": "Endpoint Central",
"vendor": "ManageEngine",
"versions": [
{
"lessThan": "11.3.2406.08",
"status": "affected",
"version": "0",
"versionType": "11.3.2416.04"
},
{
"lessThan": "11.3.2400.15",
"status": "affected",
"version": "0",
"versionType": "11.3.2400.25"
}
]
}
]Related
nvd
nvd
CVE-2024-38868
2024-08-30 18:15:06
nessus
nessus
vulnrichment
vulnrichment
CVE-2024-38868 Incorrect Authorization
2024-08-30 17:44:38
cvelist
cvelist
CVE-2024-38868 Incorrect Authorization
2024-08-30 17:44:38
CVSS3
8.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H
AI Score
7
Confidence
High
EPSS
0.003
Percentile
71.5%
Related for CVE-2024-38868