Manageengine Applications Manager Vulnerabilità

Sequenza temporale

Versione

13	16
12	6
14	3
13.x	3
8.1 Build 8100	3

Contromisure

Official Fix	22
Temporary Fix	0
Workaround	0
Unavailable	3
Not Defined	26

Sfruttabilità

High	7
Functional	0
Proof-of-Concept	5
Unproven	1
Not Defined	38

Accesso al vettore

Not Defined	0
Physical	0
Local	0
Adjacent	3
Network	48

Autenticazione

Not Defined	0
High	0
Low	18
None	33

Interazione dell'utente

Not Defined	0
Required	9
None	42

C3BM Index

CVSSv3 Base

≤1	0
≤2	0
≤3	0
≤4	0
≤5	7
≤6	11
≤7	4
≤8	12
≤9	14
≤10	3

CVSSv3 Temp

≤1	0
≤2	0
≤3	0
≤4	0
≤5	9
≤6	11
≤7	2
≤8	14
≤9	13
≤10	2

VulDB

≤1	0
≤2	0
≤3	0
≤4	3
≤5	7
≤6	10
≤7	12
≤8	16
≤9	0
≤10	3

NVD

≤1	0
≤2	0
≤3	0
≤4	0
≤5	1
≤6	4
≤7	8
≤8	2
≤9	9
≤10	19

CNA

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Fornitore

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Research

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Exploiter 0 giorni

<1k	3
<2k	26
<5k	22
<10k	0
<25k	0
<50k	0
<100k	0
≥100k	0

Exploiter aujourd'hui

<1k	50
<2k	1
<5k	0
<10k	0
<25k	0
<50k	0
<100k	0
≥100k	0

Sfrutta il volume del mercato

🔴 CTI Attività

Affected Versions (26): 8.1, 8.1 Build 8100, 9.2, 11.0, 12, 12.0, 12.3, 13, 13.0, 13.5, 14, 14 Build 14360, 14.0, 14549, 14550, 14590, 14710, 14740, 14780, 14930, 15129, 15200, 16320, 16340, 16390, 16530

Link to Product Website: https://www.manageengine.com/

Tipo di software: Log Management Software

Data di pubblicazione	Base	Temp	Vulnerabilità	0day	Oggi	Sfr	Con	CTI	CVE
11/08/2023	4.8	4.8	Zoho ManageEngine Applications Manager cross site scripting	$0-$5k	$0-$5k	Not Defined	Not Defined	0.03	CVE-2023-38333
27/04/2023	4.8	4.8	Zoho ManageEngine Applications Manager cross site scripting	$0-$5k	$0-$5k	Not Defined	Not Defined	0.04	CVE-2023-29442
11/04/2023	6.0	6.0	Zoho ManageEngine Applications Manager XML External Entity	$0-$5k	$0-$5k	Not Defined	Not Defined	0.02	CVE-2023-28340
11/04/2023	5.2	5.2	Zoho ManageEngine Applications Manager Incorrect Login Details Page cross site scripting	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00	CVE-2023-28341
10/01/2022	6.3	6.0	Zoho ManageEngine Applications Manager showReports Module sql injection	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2020-28679
03/11/2021	8.0	8.0	Zoho ManageEngine Applications Manager showReports.do escalazione di privilegi	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00	CVE-2020-24743
21/10/2021	5.5	5.3	Zoho ManageEngine Applications Manager escalazione di privilegi	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00	CVE-2021-35512
01/07/2021	4.4	4.3	Zoho ManageEngine Applications Manager User Detail cross site scripting	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2021-31813
05/02/2021	7.5	7.5	Zoho ManageEngine Applications Manager com.adventnet.appmanager.filter.UriCollector showresource.do sql injection	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00	CVE-2020-35765
19/01/2021	7.5	7.2	Zoho ManageEngine Applications Manager sql injection	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2020-27733

41 non vengono visualizzate più voci

🔒 Login Required

You need to signup and login to see more of the remaining 41 results.

altre voci di Manageengine

◂ PrecedenteVisione D'insiemeIl prossimo ▸

Do you know our Splunk app?

Download it now for free!