Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

3 matches found

Tenable Nessus
Tenable Nessusadded 2023/06/07 12:0 a.m.57 views

ManageEngine ServiceDesk Plus < 14.0 Build 14004 RCE

A remote code execution vulnerability exists in ManageEngine ServiceDesk Plus prior to 14.0 Build 14004 due to use of Apache xmlsec aka XML Security for Java 1.4.1, because the xmlsec XSLT features, by design in that version, make the application responsible for certain security protections, and...

9.8CVSS9.4AI score0.99753EPSS
Exploits15References3
ATTACKERKB
ATTACKERKBadded 2023/01/18 6:15 p.m.276 views

CVE-2022-47966

Multiple Zoho ManageEngine on-premise products, such as ServiceDesk Plus through 14003, allow remote code execution due to use of Apache Santuario xmlsec aka XML Security for Java 1.4.1, because the xmlsec XSLT features, by design in that version, make the application responsible for certain...

9.8CVSS8.1AI score0.99753EPSS
In wildExploits15References17
CNNVD
CNNVDadded 2023/01/18 12:0 a.m.1 views

多款ZOHO ManageEngine产品安全漏洞

ZOHO ManageEngine ADAudit Plus and ZOHO ManageEngine Access Manager Plus are both products of ZOHO, Inc. ZOHO ManageEngine ADAudit Plus is designed to simplify auditing, prove compliance and detect threats. zoho ManageEngine Access Manager Plus is a privileged session management solution for...

9.8CVSS8.6AI score0.99753EPSS
Exploits15References15
Rows per page
Query Builder