Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

Manageengine Opmanager Security Vulnerabilities - 2023

cve
cve

CVE-2022-43473

A blind XML External Entity (XXE) vulnerability exists in the Add UCS Device functionality of ManageEngine OpManager 12.6.168. A specially crafted XML file can lead to SSRF. An attacker can servea malicious XML payload to trigger this vulnerability.

5.8CVSS

5.3AI Score

0.011EPSS

2023-03-30 05:15 PM
33
cve
cve

CVE-2023-31099

Zoho ManageEngine OPManager through 126323 allows an authenticated user to achieve remote code execution via probe servers.

8.8CVSS

8.8AI Score

0.004EPSS

2023-05-04 02:15 AM
53
cve
cve

CVE-2023-6105

An information disclosure vulnerability exists in multiple ManageEngine products that can result in encryption keys being exposed. A low-privileged OS user with access to the host where an affected ManageEngine product is installed can view and use the exposed key to decrypt product database passwo...

5.5CVSS

5.2AI Score

0.0004EPSS

2023-11-15 09:15 PM
28