Lucene search
K
ZohocorpManageengine Oputils

8 matches found

CVE
CVE
added 2022/08/10 2:17 p.m.458 views

CVE-2022-36923

CVE-2022-36923 affects Zoho ManageEngine products (OpManager, OpManager Plus, OpManager MSP, Network Configuration Manager, NetFlow Analyzer, Firewall Analyzer, and OpUtils) with an authentication bypass that allows an unauthenticated attacker to retrieve a user’s API key and use external APIs. T...

7.5CVSS7.3AI score0.0793EPSS
In wild
CVE
CVE
added 2019/06/18 9:27 p.m.147 views

CVE-2019-12133

CVE-2019-12133 affects multiple Zoho ManageEngine products (Desktop Central, EventLog Analyzer, ServiceDesk Plus, SupportCenter Plus, O365 Manager Plus, Mobile Device Manager Plus, Patch Connect Plus, Vulnerability Manager Plus, Patch Manager Plus, OpManager, NetFlow Analyzer, OpUtils, Network Co...

7.8CVSS8AI score0.01817EPSS
CVE
CVE
added 2024/01/08 2:45 p.m.118 views

CVE-2023-47211

ManageEngine OpManager 12.7.258 is affected by a directory traversal vulnerability in the uploadMib function. An attacker can send a crafted MiB file via HTTP (via the MiB Browser upload path) and cause arbitrary file creation by manipulating destination file naming (orgMibName) without sufficien...

9.1CVSS8.4AI score0.47024EPSS
CVE
CVE
added 2018/06/29 12:0 p.m.77 views

CVE-2018-12998

Zoho ManageEngine CVE-2018-12998 is a reflected XSS in multiple products (Netflow Analyzer before build 123137, Network Configuration Manager before 123128, OpManager before 123148, OpUtils before 123161, Firewall Analyzer before 123147) exploitable via the operation parameter to /servlet/com.adv...

6.1CVSS6AI score0.98463EPSS
Web
CVE
CVE
added 2022/08/09 3:15 p.m.74 views

CVE-2022-37024

Summary (CVE-2022-37024) : Multiple Zoho ManageEngine products (OpManager, OpManager Plus, OpManager MSP, Network Configuration Manager, NetFlow Analyzer, OpUtils) prior to 2022-07-29 are affected by a remote code execution flaw. The root cause is insufficient input validation in the getDNSResolv...

8.8CVSS8.9AI score0.78326EPSS
CVE
CVE
added 2023/11/15 8:57 p.m.71 views

CVE-2023-6105

Technical details about CVE-2023-6105 are not publicly provided in the supplied documents; monitor for updates.

5.5CVSS5.2AI score0.00694EPSS
CVE
CVE
added 2022/08/29 8:21 p.m.65 views

CVE-2022-38772

Summary: CVE-2022-38772 affects Zoho ManageEngine OpManager, OpManager Plus, OpManager MSP, Network Configuration Manager, NetFlow Analyzer, and OpUtils. The issue is a command injection in the getNmapInitialOption function that allows authenticated users to perform database changes leading to re...

8.8CVSS8.9AI score0.77618EPSS
CVE
CVE
added 2018/06/29 12:0 p.m.60 views

CVE-2018-12997

CVE-2018-12997 affects Zoho ManageEngine products: NetFlow Analyzer, Network Configuration Manager, OpManager, OpUtils, and Firewall Analyzer. The underlying issue is an Incorrect Access Control in FailOverHelperServlet, allowing unauthenticated attackers to read arbitrary server files by sending...

7.5CVSS7.4AI score0.06706EPSS