5124 matches found
ZOHO ManageEngine Analytics Plus 安全漏洞
ZOHO ManageEngine Analytics Plus is a self-service IT analytics solution from ZOHO. Get a better view of your IT data with rich visualizations and dashboards. A security vulnerability exists in ZOHO ManageEngine Analytics Plus prior to version 6100 that stems from vulnerability to an authenticate...
ManageEngine ADAudit Plus < Build 8123 SQLi (CVE-2024-49574)
The version of ManageEngine ADAudit Plus installed on the remote host is prior to build 8123. It is, therefore, affected by a SQL injection vulnerability in the reports module.. Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version...
CVE-2024-49574
Zohocorp ManageEngine ADAudit Plus versions below 8123 are vulnerable to SQL Injection in the reports module...
CVE-2024-49574
Affected software: ManageEngine ADAudit Plus. Versions below build 8123 are vulnerable to a SQL injection flaw in the reports module. Root cause: improper handling of SQL queries in the reports component leading to injection. Impact: high confidentiality and integrity impact; partial availability...
ZOHO ManageEngine ADAudit Plus 安全漏洞
ZOHO ManageEngine ADAudit Plus is used by ZOHO USA, Inc. to simplify auditing, demonstrate compliance and detect threats. A security vulnerability exists in ZOHO ManageEngine ADAudit Plus prior to version 8123 that stems from the presence of a SQL injection vulnerability...
ManageEngine Endpoint Central < 11.3.2416.22 , 11.3.2428.x < 11.3.2428.10, 11.3.2435.x < 11.3.2435.1 Arbitrary File Deletion vulnerability
The version of ManageEngine Endpoint Central installed on the remote Windows host is either prior to 11.3.2416.22, 11.3.2428.10 or 11.3.2435.1. It is,therefore, affected by a Arbitrary File Deletion vulnerability. For more information, consult the vendor advisory. Note that Nessus has not tested...
CVE-2024-10839
Zohocorp ManageEngine SharePoint Manager Plus versions 4503 and prior are vulnerable to authenticated XML External Entity XXE in the Management option...
CVE-2024-10839
Zohocorp ManageEngine SharePoint Manager Plus versions 4503 and prior are vulnerable to authenticated XML External Entity XXE in the Management option...
CVE-2024-10839 XML External Entity
Zohocorp ManageEngine SharePoint Manager Plus versions 4503 and prior are vulnerable to authenticated XML External Entity XXE in the Management option...
CVE-2024-10839
CVE-2024-10839 affects Zohocorp/ManageEngine SharePoint Manager Plus (versions 4503 and prior). The vulnerability is an authenticated XML External Entity (XXE) issue in the Management option. Impact is described as high confidentiality impact and partial availability impact per the NVD metrics. N...
CVE-2024-10839 XML External Entity
Zohocorp ManageEngine SharePoint Manager Plus versions 4503 and prior are vulnerable to authenticated XML External Entity XXE in the Management option...
CVE-2024-24409
Zohocorp ManageEngine ADManager Plus versions 7203 and prior are vulnerable to Privilege Escalation in the Modify Computers option...
CVE-2024-24409 Privilege Escalation
Zohocorp ManageEngine ADManager Plus versions 7203 and prior are vulnerable to Privilege Escalation in the Modify Computers option...
CVE-2024-24409
CVE-2024-24409 affects Zohocorp ManageEngine ADManager Plus versions 7203 and earlier, with a Privilege Escalation in the Modify Computers option. The issue enables elevation of privilege by manipulating computer object attributes (e.g., userAccountControl/msDS-AllowedToDelegateTo) when a technic...
CVE-2024-10203
Zohocorp ManageEngine EndPoint Central versions 11.3.2416.21 and below, 11.3.2428.9 and below are vulnerable to Arbitrary File Deletion in the agent installed machines...
CVE-2024-10203
Zohocorp ManageEngine EndPoint Central versions 11.3.2416.21 and below, 11.3.2428.9 and below are vulnerable to Arbitrary File Deletion in the agent installed machines...
CVE-2024-10203 Agent Arbitrary File Deletion
Zohocorp ManageEngine EndPoint Central versions 11.3.2416.21 and below, 11.3.2428.9 and below are vulnerable to Arbitrary File Deletion in the agent installed machines...
CVE-2024-10203
CVE-2024-10203 affects Zohocorp/ManageEngine Endpoint Central. Vulnerable components are the Endpoint Central agent on Windows machines, with version ranges 11.3.2416.21 and below and 11.3.2428.9 and below. root cause is described as insecure privilege management that enables Arbitrary File Delet...
CVE-2024-10203 Agent Arbitrary File Deletion
Zohocorp ManageEngine EndPoint Central versions 11.3.2416.21 and below, 11.3.2428.9 and below are vulnerable to Arbitrary File Deletion in the agent installed machines...
ManageEngine ADAudit Plus < Build 7250 SQL Injection
The version of ManageEngine ADAudit Plus installed on the remote host is prior to 7.2, Build 7250. It is, therefore, affected by SQL injection vulnerability. - Zohocorp ManageEngine ADManager Plus versions 7241 and prior are vulnerable to SQL Injection in Archived Audit Report. CVE-2024-48878 Not...