Manageengine الثغرات

التسلسل الزمني

النوع

Not Defined322
Network Management Software62
Log Management Software60
Endpoint Management Software48
Access Management Software10

منتج

Zoho ManageEngine ServiceDesk Plus51
Zoho ManageEngine Desktop Central47
Zoho ManageEngine Applications Manager46
Zoho ManageEngine OpManager45
Zoho ManageEngine ADManager Plus42

معالجة

Official Fix280
Temporary Fix0
Workaround0
Unavailable13
Not Defined225

قابلية الاستغلال

High39
Functional0
Proof-of-Concept71
Unproven11
Not Defined397

متجه الوصول

Not Defined0
Physical2
Local9
Adjacent87
Network420

توثيق

Not Defined0
High14
Low229
None275

تفاعل المستخدم

Not Defined0
Required153
None365

C3BM Index

CVSSv3 Base

≤10
≤20
≤34
≤436
≤582
≤6127
≤7109
≤899
≤953
≤108

CVSSv3 Temp

≤10
≤20
≤34
≤445
≤5100
≤6154
≤773
≤885
≤951
≤106

VulDB

≤10
≤20
≤37
≤462
≤5123
≤6100
≤7121
≤891
≤98
≤106

NVD

≤10
≤20
≤31
≤41
≤511
≤617
≤787
≤849
≤941
≤1082

CNA

≤10
≤20
≤30
≤40
≤53
≤62
≤73
≤83
≤94
≤104

المجهز

≤10
≤20
≤30
≤40
≤50
≤61
≤70
≤80
≤90
≤100

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤101

إكسبلويت ذات هجوم فوري

<1k120
<2k258
<5k139
<10k0
<25k1
<50k0
<100k0
≥100k0

إكسبلويت اليوم

<1k506
<2k10
<5k2
<10k0
<25k0
<50k0
<100k0
≥100k0

حجم سوق الإكسبلويت

🔴 CTI النشاطات

Affected Products (82): ADAudit (3), ADAudit Plus (11), ADAuditPlus (1), ADManager Plus (43), ADManagerPlus (1), AD Manager Plus (1), ADManager Plus Build (1), ADSelfService (2), ADSelfService Plus (47), ADSelfService Plus GINA Client (1), Access Manager Plus (10), Active Directory 360 (1), Analytics Plus (3), AppManager (1), Application Control Plus (2), Application Manager (5), Applications Manager (51), Asset Explorer (7), AssetExplorer (13), Asset Explorer Agent (3), Browser Security Plus (1), CloudSecurityPlus (1), Cloud Security Plus (1), DataSecurity Plus (4), Desktop Central (48), DesktopCentral (2), Desktop Central MSP (3), Device Control Plus (3), Device Expert (1), Endpoint Central (1), Endpoint Central MSP (1), Endpoint DLP (1), EventLog Analyzer (15), Event Log Analyzer (3), Exchange Reporter Plus (4), FireWall (1), Firewall Analyzer (14), Key Manager Plus (4), Log360 (6), Log Analyzer (2), M365 Manager Plus (2), MDM (1), ManageEngine (2), ManageEngine Log360 (1), ManageEngine Netflow Analyzer (4), ManageEngine OpManager (13), ManageEngine OpUtils (1), ManageEngine PAM360 (2), Mobile Device Manager Plus (2), Monitoring Manager (3), NetFlow Analyzer (5), Netflow Analyzer (15), Netflow Analyzer Professional (7), Network Configuration Manager (11), O365 Manager Plus (2), OPManager (2), OS Deployer (1), OpManager (51), OpManager MSP (3), OpManager Plus (3), OpStor (2), OpUtils (9), PAM 360 (1), PAM360 (6), Password Manager Pro (30), PasswordManager Pro (1), Password Manager Pro6.1 (1), Patch Connect Plus (2), Patch Manager Plus (2), Recovery Manager Plus (2), Remote Access Plus (10), Remote Monitoring and Management (1), ServiceDesk (3), Service Desk Plus (1), ServiceDesk Plus (55), ServiceDesk Plus MSP (13), Service Plus (1), SharePoint Manager Plus (2), Support Center Plus (4), SupportCenter Plus (15), Vulnerability Manager Plus (2), and SupportCenter Plus (1)

Link to Vendor Website: https://www.manageengine.com/

منشورBaseTempالثغرةProdق�معالجةEPSSCTICVE
11/03/20248.58.5Zoho ManageEngine Desktop Central تجاوز الصلاحياتEndpoint Management SoftwareNot DefinedNot Defined0.000430.03CVE-2024-2370
16/02/20247.37.1Zoho ManageEngine Exchange Reporter Plus Report Exporting حقن إس كيو إلReporting SoftwareNot DefinedOfficial Fix0.000430.05CVE-2024-21775
02/02/20247.87.7Zoho ManageEngine ADAudit Plus File-Summary DrillDown حقن إس كيو إلغير معروفNot DefinedOfficial Fix0.005380.05CVE-2024-0269
02/02/20247.87.7Zoho ManageEngine ADAudit Plus Home Graph-Data حقن إس كيو إلغير معروفNot DefinedOfficial Fix0.005380.06CVE-2024-0253
02/02/20247.67.6Zoho ManageEngine ADAudit Plus Aggregate Report حقن إس كيو إلغير معروفNot DefinedNot Defined0.077290.04CVE-2023-48793
02/02/20247.67.6Zoho ManageEngine ADAudit Plus حقن إس كيو إلغير معروفNot DefinedNot Defined0.077290.00CVE-2023-48792
25/01/20242.52.5Zoho ManageEngine ADAudit Plus اجتياز الدليلغير معروفNot DefinedOfficial Fix0.000690.03CVE-2023-50785
18/01/20244.44.4Zoho ManageEngine ServiceDesk Plus MSP Task Name سكربتات مشتركةغير معروفNot DefinedOfficial Fix0.007330.02CVE-2023-49943
11/01/20249.39.1Zoho ManageEngine ADSelfService Plus Load Balancer Privilege Escalationغير معروفNot DefinedOfficial Fix0.001350.07CVE-2024-0252
08/01/20247.77.7Zoho ManageEngine OpManager HTTP Request uploadMib اجتياز الدليلNetwork Management SoftwareNot DefinedNot Defined0.001640.04CVE-2023-47211
22/11/20235.75.6Zoho ManageEngine Recovery Manager Plus Proxy Setting Privilege Escalationغير معروفNot DefinedOfficial Fix0.005070.00CVE-2023-48646
16/11/20234.44.3Zoho ManageEngine Service Desk Plus Encryption Key الكشف عن المعلوماتAccess Management SoftwareNot DefinedOfficial Fix0.000420.01CVE-2023-6105
03/11/20236.76.7Zoho ManageEngine Desktop Central HTTP Request smtpConfig.do تجاوز الصلاحياتEndpoint Management SoftwareNot DefinedNot Defined0.003860.00CVE-2023-4769
03/11/20235.25.2Zoho ManageEngine Desktop Central HTTP Response InvSWMetering.pdf تجاوز الصلاحياتEndpoint Management SoftwareNot DefinedNot Defined0.004640.02CVE-2023-4768
03/11/20235.25.2Zoho ManageEngine Desktop Central HTTP Response InvSWMetering.csv تجاوز الصلاحياتEndpoint Management SoftwareNot DefinedNot Defined0.004640.00CVE-2023-4767
03/11/20236.46.4NCSIST ManageEngine MDM اجتياز الدليلغير معروفNot DefinedNot Defined0.001140.00CVE-2023-41344
27/09/20235.55.3Zoho ManageEngine ADManager Plus REST API توثيق ضعيفغير معروفNot DefinedOfficial Fix0.014120.04CVE-2023-41904
12/09/20235.75.6Zoho ManageEngine ADManager Plus Privilege Escalationغير معروفNot DefinedOfficial Fix0.001130.00CVE-2023-38743
01/09/20233.63.6Zoho ManageEngine ADManager Plus اجتياز الدليلغير معروفNot DefinedNot Defined0.001010.03CVE-2023-39912
29/08/20237.67.6Zoho ManageEngine ADManager Plus 2FA توثيق ضعيفغير معروفNot DefinedNot Defined0.025510.06CVE-2023-35785
18/08/20235.45.3Zoho ManageEngine ADManager Plus Build تجاوز الصلاحياتغير معروفNot DefinedNot Defined0.000600.02CVE-2023-31492
11/08/20234.84.7Zoho ManageEngine Password Manager Pro Query Report سكربتات مشتركةغير معروفNot DefinedOfficial Fix0.000970.00CVE-2020-27449
11/08/20234.84.8Zoho ManageEngine Applications Manager سكربتات مشتركةLog Management SoftwareNot DefinedNot Defined0.005220.03CVE-2023-38333
07/08/20236.56.5Zoho ManageEngine ADAudit Plus Event Analysis تجاوز الصلاحياتغير معروفNot DefinedNot Defined0.031550.00CVE-2023-32783
04/08/20235.05.0Zoho ManageEngine ADManager Plus الكشف عن المعلوماتغير معروفNot DefinedNot Defined0.000480.00CVE-2023-38332

493 بعض الادخالات لم يتم عرضها

🔒 Login Required

You need to signup and login to see more of the remaining 493 results.

التالي نظرة عامة السابق

Interested in the pricing of exploits?

See the underground prices here!