Lucene search
K

629 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 3:36 a.m.10 views

CVE-2023-28340

Zoho ManageEngine Applications Manager through 16320 allows the admin user to conduct an XXE attack...

6.5CVSS6.9AI score0.03199EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:37 p.m.9 views

CVE-2021-35580

Vulnerability in the Oracle Applications Manager product of Oracle E-Business Suite component: View Reports. Supported versions that are affected are 12.1.3 and 12.2.3-12.2.10. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle...

6.1CVSS6.8AI score0.00657EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:36 p.m.4 views

CVE-2021-35582

Vulnerability in the Oracle Applications Manager product of Oracle E-Business Suite component: View Reports. Supported versions that are affected are 12.1.3 and 12.2.3-12.2.10. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle...

6.5CVSS6.9AI score0.00487EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 7:54 p.m.7 views

CVE-2021-35569

Vulnerability in the Oracle Applications Manager product of Oracle E-Business Suite component: Diagnostics. Supported versions that are affected are 12.1.3 and 12.2.3-12.2.10. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to compromise Oracle...

6.8CVSS6AI score0.0109EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 7:54 p.m.7 views

CVE-2021-35512

An SSRF issue was discovered in Zoho ManageEngine Applications Manager build 15200...

6.5CVSS6.9AI score0.01564EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 6:38 p.m.10 views

CVE-2021-35581

Vulnerability in the Oracle Applications Manager product of Oracle E-Business Suite component: View Reports. Supported versions that are affected are 12.1.3 and 12.2.3-12.2.10. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle...

4.7CVSS5.7AI score0.007EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 5:44 p.m.9 views

CVE-2020-14826

Vulnerability in the Oracle Applications Manager product of Oracle E-Business Suite component: SQL Extensions. Supported versions that are affected are 12.1.3 and 12.2.3 - 12.2.10. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle...

5.3CVSS6.2AI score0.01321EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 3:21 p.m.12 views

CVE-2020-24743

An issue was found in /showReports.do Zoho ManageEngine Applications Manager up to 14550, allows attackers to gain escalated privileges via the resourceid parameter...

9.8CVSS7.1AI score0.02736EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 3:13 p.m.10 views

CVE-2020-14761

Vulnerability in the Oracle Applications Manager product of Oracle E-Business Suite component: Oracle Diagnostics Interfaces. Supported versions that are affected are 12.1.3 and 12.2.3 - 12.2.7. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to...

6.5CVSS6.1AI score0.00991EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 3:13 p.m.9 views

CVE-2020-14811

Vulnerability in the Oracle Applications Manager product of Oracle E-Business Suite component: AMP EBS Integration. Supported versions that are affected are 12.1.3 and 12.2.3 - 12.2.10. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise...

5.3CVSS5.7AI score0.01237EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 10:9 a.m.5 views

CVE-2019-19475

An issue was discovered in ManageEngine Applications Manager 14 with Build 14360. Integrated PostgreSQL which is built-in in Applications Manager is prone to attack due to lack of file permission security. The malicious users who are in “Authenticated Users” group can exploit privilege escalation...

9CVSS8.3AI score0.02552EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 1:25 a.m.7 views

CVE-2017-11557

An issue was discovered in ZOHO ManageEngine Applications Manager 12.3. It is possible for an unauthenticated user to view the list of domain names and usernames used in a company's network environment via a userconfiguration.do?method=editUser request...

5.3CVSS6.9AI score0.03696EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/02/06 3:17 a.m.8 views

CVE-2021-35566

Vulnerability in the Oracle Applications Manager product of Oracle E-Business Suite component: Diagnostics. Supported versions that are affected are 12.1.3 and 12.2.3-12.2.10. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle...

8.5CVSS6.8AI score0.01249EPSS
Exploits0References1
OSV
OSV
added 2025/01/29 12:15 p.m.4 views

CVE-2024-41140

Zohocorp ManageEngine Applications Manager versions 174000 and prior are vulnerable to the incorrect authorization in the update user function...

6.5CVSS5.8AI score0.00896EPSS
Exploits0References1
NVD
NVD
added 2025/01/29 12:15 p.m.35 views

CVE-2024-41140

Zohocorp ManageEngine Applications Manager versions 174000 and prior are vulnerable to the incorrect authorization in the update user function...

8.1CVSS0.00896EPSS
Exploits0References1
CVE
CVE
added 2025/01/29 11:14 a.m.65 views

CVE-2024-41140

CVE-2024-41140 affects Zohocorp ManageEngine Applications Manager versions 174000 and prior, with an incorrect authorization in the update user function. Public documentation from NVD and Red Hat confirms impact to confidentiality and integrity (high), with network attack vector, low attack compl...

8.1CVSS6.9AI score0.00896EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2025/01/29 12:0 a.m.4 views

PT-2025-2604 · Zohocorp · Zoho Manageengine Applications Manager

Name of the Vulnerable Software and Affected Versions: Zohocorp ManageEngine Applications Manager versions 174000 and prior Description: The issue is related to incorrect authorization in the update user function. This allows for potential unauthorized access or modifications. The estimated numbe...

8.1CVSS7AI score0.00896EPSS
Exploits0References6
CNNVD
CNNVD
added 2025/01/29 12:0 a.m.5 views

ZOHO ManageEngine Applications Manager 安全漏洞

ZOHO ManageEngine Applications Manager is a suite of IT operations management solutions from ZOHO USA. The product features application performance management, fault management, report generation and SLA management. A security vulnerability exists in ZOHO ManageEngine Applications Manager version...

8.1CVSS6.8AI score0.00896EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2024/10/21 12:0 a.m.5 views

The vulnerability of the Diagnostics component of the Oracle Applications Manager software, a business automation system for enterprises under the Oracle E-Business Suite, allows an attacker to modify, add, or delete data.

The vulnerability of the Diagnostics component of the Oracle Applications Manager application management tool within the Oracle E-Business Suite relates to deficiencies in the authentication process due to incorrect validation of input data. Exploiting this vulnerability could allow an attacker t...

8.5CVSS7.6AI score0.00435EPSS
Exploits0References3Affected Software2
RedhatCVE
RedhatCVE
added 2024/10/16 10:27 a.m.16 views

CVE-2024-21268

Vulnerability in the Oracle Applications Manager product of Oracle E-Business Suite component: Diagnostics. Supported versions that are affected are 12.2.11-12.2.13. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Applications...

8.1CVSS7AI score0.00435EPSS
Exploits0References1
Rows per page
Query Builder