CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

RedhatCVE•added 2025/05/22 6:48 p.m.•4 views

CVE-2021-40173

Zoho ManageEngine Cloud Security Plus before Build 4117 allows a CSRF attack on the server proxy settings...

8.8CVSS7AI score0.00575EPSS

Exploits0

Prion•added 2023/08/28 8:15 p.m.•27 views

Spoofing

Zoho ManageEngine Active Directory 360 versions 4315 and below, ADAudit Plus 7202 and below, ADManager Plus 7200 and below, Asset Explorer 6993 and below and 7xxx 7002 and below, Cloud Security Plus 4161 and below, Data Security Plus 6110 and below, Eventlog Analyzer 12301 and below, Exchange...

5.1CVSS9.3AI score0.00279EPSS

Exploits0References2Affected Software17

CVE•added 2023/08/28 12:0 a.m.•114 views

CVE-2023-35785

CVE-2023-35785 is a TFA bypass vulnerability affecting Zoho ManageEngine Active Directory 360, ADAudit Plus, ADManager Plus, Asset Explorer, Cloud Security Plus, Data Security Plus, Eventlog Analyzer, Exchange Reporter Plus, Log360, Log360 UEBA, M365 Manager/Security Plus, Recovery Manager Plus, ...

8.1CVSS8AI score0.00279EPSS

Exploits0References2Affected Software1

OSV•added 2021/08/29 8:15 p.m.•0 views

CVE-2021-40173

Zoho ManageEngine Cloud Security Plus before Build 4117 allows a CSRF attack on the server proxy settings...

8.8CVSS5.8AI score

Exploits0References1

NVD•added 2021/08/29 8:15 p.m.•8 views

CVE-2021-40173

Zoho ManageEngine Cloud Security Plus before Build 4117 allows a CSRF attack on the server proxy settings...

8.8CVSS0.00575EPSS

Exploits0References1

Prion•added 2021/08/29 8:15 p.m.•13 views

Cross site request forgery (csrf)

Zoho ManageEngine Cloud Security Plus before Build 4117 allows a CSRF attack on the server proxy settings...

6.8CVSS8.6AI score0.00575EPSS

Exploits0References1Affected Software1

CVE•added 2021/08/29 7:18 p.m.•43 views

CVE-2021-40173

CVE-2021-40173 affects Zoho ManageEngine Cloud Security Plus prior to Build 4117 and enables a CSRF against server proxy settings. The CVE has a CVSS v3.1 base score of 8.8 (NETWORK, LOW ATTACK COMPLEXITY, NONE PRIVILEGES, UI REQUIRED, HIGH CONF/INT/AVAIL impacts). Release notes indicate the fix ...

8.8CVSS8.7AI score0.00575EPSS

Exploits0References1Affected Software1

Cvelist•added 2021/08/29 7:18 p.m.•7 views

CVE-2021-40173

Zoho ManageEngine Cloud Security Plus before Build 4117 allows a CSRF attack on the server proxy settings...

8.9AI score0.00575EPSS

Exploits0References1

NVD•added 2020/08/31 3:15 p.m.•11 views

CVE-2020-24786

An issue was discovered in Zoho ManageEngine Exchange Reporter Plus before build number 5510, AD360 before build number 4228, ADSelfService Plus before build number 5817, DataSecurity Plus before build number 6033, RecoverManager Plus before build number 6017, EventLog Analyzer before build numbe...

10CVSS9.5AI score0.0678EPSS

Exploits0References12

Prion•added 2020/08/31 3:15 p.m.•15 views

Authentication flaw

10CVSS9.4AI score0.0678EPSS

Exploits0References12Affected Software11

CVE•added 2020/08/31 2:2 p.m.•56 views

CVE-2020-24786

CVE-2020-24786 affects multiple ManageEngine products (Exchange Reporter Plus, AD360, ADSelfService Plus, DataSecurity Plus, RecoverManager Plus, EventLog Analyzer, ADAudit Plus, O365 Manager Plus, Cloud Security Plus, ADManager Plus, Log360) with a remotely accessible Java servlet (com.manageeng...

10CVSS9.4AI score0.0678EPSS

Exploits0References12Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by