Zoho Manageengine Adselfservice Plus Vulnérabilités

Chronologie

Version

6103	5
5.0	4
5.1	4
5.x	4
5.2	3

Contre-mesures

Official Fix	24
Temporary Fix	0
Workaround	0
Unavailable	1
Not Defined	17

Exploitabilité

High	3
Functional	0
Proof-of-Concept	3
Unproven	0
Not Defined	36

Vecteur d'accès

Not Defined	0
Physical	2
Local	1
Adjacent	10
Network	29

Authentification

Not Defined	0
High	0
Low	16
None	26

Interaction de l'utilisateur

Not Defined	0
Required	14
None	28

CVSSv3 Base

≤1	0
≤2	0
≤3	1
≤4	4
≤5	4
≤6	13
≤7	8
≤8	5
≤9	5
≤10	2

CVSSv3 Temp

≤1	0
≤2	0
≤3	1
≤4	5
≤5	4
≤6	15
≤7	7
≤8	3
≤9	6
≤10	1

VulDB

≤1	0
≤2	0
≤3	2
≤4	6
≤5	9
≤6	7
≤7	8
≤8	8
≤9	2
≤10	0

NVD

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	1
≤7	7
≤8	3
≤9	1
≤10	9

CNA

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	1

Fournisseur

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Research

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Exploiter 0 jour

<1k	14
<2k	14
<5k	14
<10k	0
<25k	0
<50k	0
<100k	0
≥100k	0

Exploiter aujourd'hui

<1k	41
<2k	1
<5k	0
<10k	0
<25k	0
<50k	0
<100k	0
≥100k	0

Affected Versions (33): 4.0, 4.1, 4.2, 4.3, 4.5, 5, 5.0, 5.0 Build 5704, 5.0.1, 5.0.2, 5.0.3, 5.0.4, 5.0.5, 5.1, 5.2, 5.3, 5.4, 5.5, 5.6, 5.6 Build 5607, 5.7, 6.1, 5814, 6013, 6101, 6102, 6103, 6111, 6113, 6121, 6203, 6217, 6401

Link to Product Website: https://www.manageengine.com/

Publié	Base	Temp	Vulnérabilité	0day	Aujourd'hui	Exp	Con	CTI	CVE
11/01/2024	9.3	9.1	Zoho ManageEngine ADSelfService Plus Load Balancer Privilege Escalation	$0-$5k	$0-$5k	Not Defined	Official Fix	0.07	CVE-2024-0252
22/06/2023	6.8	6.8	Zoho ManageEngine ADSelfService Plus GINA Client authentification faible	$0-$5k	$0-$5k	Not Defined	Not Defined	0.04	CVE-2023-35719
20/06/2023	8.0	7.9	Zoho ManageEngine ADSelfService Plus authentification faible	$0-$5k	$0-$5k	Not Defined	Not Defined	0.03	CVE-2023-35854
06/04/2023	5.5	5.4	Zoho ManageEngine ADSelfService Plus Mobile App Authentication API dénie de service	$0-$5k	$0-$5k	Not Defined	Official Fix	0.04	CVE-2023-28342
24/03/2023	5.8	5.8	Zoho ManageEngine ADSelfService Plus IDM Application elévation de privilèges	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00	CVE-2022-36413
18/01/2023	7.7	7.4	Zoho ManageEngine Access Manager Plus Apache xmlsec Remote Code Execution	$0-$5k	$0-$5k	Proof-of-Concept	Official Fix	0.00	CVE-2022-47966
20/05/2022	3.5	3.4	Zoho ManageEngine ADSelfService Plus POST Request login divulgation de l'information	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00	CVE-2022-28987
19/04/2022	2.6	2.5	Zoho ManageEngine ADSelfService Plus Configuration divulgation de l'information	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2022-29457
18/04/2022	6.3	6.0	Zoho ManageEngine ADSelfService Plus elévation de privilèges	$0-$5k	$0-$5k	Not Defined	Official Fix	0.03	CVE-2022-28810
10/09/2021	6.3	6.0	Zoho ManageEngine ADSelfService Plus Database Linking sql injection	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2021-37422

32 plus d'entrées ne sont pas affichées

🔒 Login Required

You need to signup and login to see more of the remaining 32 results.

plus d'entrées par Zoho Manageengine

◂ PrécédentAperçuSuivant ▸

Interested in the pricing of exploits?

See the underground prices here!