zohocorp
559 tracked vulnerabilities.
CVE-2022-36413
CRITICAL
Zoho ManageEngine ADSelfService Plus <6.203 - DoS
Mar 23, 2023
CVSS 9.1
EPSS 0.01
CVE-2022-48362
HIGH
ManageEngine Desktop Central < 10.1.2137.2 - Path Traversal & RCE via AgentLogUploadServlet
Feb 25, 2023
CVSS 8.8
EPSS 0.04
CVE-2022-47966
CRITICAL
KEVNUCLEI
ManageEngine ADSelfService Plus Unauthenticated SAML RCE
Jan 18, 2023
CVSS 9.8
EPSS 0.94
CVE-2022-47523
CRITICAL
Zoho ManageEngine Access Manager Plus, Password Manager Pro, and PAM360 - SQL Injection
Jan 05, 2023
CVSS 9.8
EPSS 0.46
CVE-2022-47578
HIGH
Zoho ManageEngine Device Control Plus 10.1.2228.15 - Privilege Esca...
Dec 20, 2022
CVSS 7.1
EPSS 0.00
CVE-2022-47577
HIGH
Zoho ManageEngine Device Control Plus 10.1.2228.15 - Info Disclosure
Dec 20, 2022
CVSS 7.1
EPSS 0.00
CVE-2022-40772
MEDIUM
Zoho ManageEngine ServiceDesk Plus <13010 - Auth Bypass
Nov 23, 2022
CVSS 6.5
EPSS 0.01
CVE-2022-40771
MEDIUM
Zoho ManageEngine ServiceDesk Plus <= 13010 - XML External Entity Injection
Nov 23, 2022
CVSS 4.9
EPSS 0.01
CVE-2022-40770
HIGH
ManageEngine ServiceDesk Plus < 13.0 - Authenticated Command Injection
Nov 23, 2022
CVSS 7.2
EPSS 0.66
CVE-2022-42904
HIGH
ManageEngine ADManager Plus <= 7151 - Authenticated Command Injection via Proxy Settings
Nov 18, 2022
CVSS 7.2
EPSS 0.79
CVE-2022-42903
LOW
ManageEngine SupportCenter Plus <= 11024 - Missing Authorization for Organization Users List
Nov 17, 2022
CVSS 3.3
EPSS 0.00
CVE-2022-43672
CRITICAL
Zoho ManageEngine <12122, PAM360 <5711, Access Manager Plus <4306 -...
Nov 12, 2022
CVSS 9.8
EPSS 0.43
CVE-2022-43671
CRITICAL
Zoho ManageEngine <12122, PAM360 <5711, Access Manager Plus <4306 -...
Nov 12, 2022
CVSS 9.8
EPSS 0.52
CVE-2022-41339
HIGH
Zoho ManageEngine Mobile Device Manager Plus <10.1.2207.5 - Privile...
Nov 12, 2022
CVSS 7.8
EPSS 0.00
CVE-2022-40773
HIGH
ManageEngine ServiceDesk Plus MSP < 10609 & SupportCenter Plus < 11025 - Privilege Escalation via ExportMickeyList
Nov 12, 2022
CVSS 8.8
EPSS 0.01
CVE-2022-41978
HIGH
Zoho CRM Lead Magnet < 1.7.5.8 - Authenticated Arbitrary Options Update
Nov 09, 2022
CVSS 8.8
EPSS 0.05
CVE-2022-40300
CRITICAL
ManageEngine Password Manager Pro PAM360 and Access Manager Plus - SQL Injection
Sep 16, 2022
CVSS 9.8
EPSS 0.38
CVE-2022-38772
HIGH
Zoho ManageEngine <125658-126120 - RCE
Aug 29, 2022
CVSS 8.8
EPSS 0.39
CVE-2022-37024
HIGH
Zohocorp Manageengine Firewall Analyzer - Remote Code Execution
Aug 10, 2022
CVSS 8.8
EPSS 0.51
CVE-2022-36923
HIGH
NUCLEI
Zoho ManageEngine Firewall Analyzer - Unauthenticated API Key Exposure
Aug 10, 2022
CVSS 7.5
EPSS 0.27
CVE-2022-36412
CRITICAL
Zoho ManageEngine SupportCenter Plus <11023 - Auth Bypass
Jul 26, 2022
CVSS 9.8
EPSS 0.01
CVE-2022-35405
CRITICAL
KEVNUCLEI
ManageEngine Password Manager Pro <12101 & PAM360 <5510 - RCE via Java Deserialization
Jul 19, 2022
CVSS 9.8
EPSS 0.94
CVE-2022-35404
HIGH
ManageEngine OPManager < 12.5 - Unauthenticated Arbitrary File and Directory Creation
Jul 18, 2022
CVSS 8.2
EPSS 0.01
CVE-2022-35403
HIGH
Zoho ManageEngine <13008 - Info Disclosure
Jul 12, 2022
CVSS 7.5
EPSS 0.03
CVE-2022-34829
HIGH
ManageEngine ADSelfService Plus < 6203 - Denial of Service via Mobile App Deployment API
Jul 04, 2022
CVSS 7.5
EPSS 0.25
Products
manageengine_applications_manager 56
manageengine_opmanager 56
manageengine_admanager_plus 53
manageengine_adaudit_plus 52
manageengine_adselfservice_plus 51
manageengine_servicedesk_plus 50
manageengine_desktop_central 48
manageengine_supportcenter_plus 31
manageengine_exchange_reporter_plus 28
manageengine_netflow_analyzer 28
manageengine_assetexplorer 26
manageengine_servicedesk_plus_msp 26
manageengine_password_manager_pro 22
manageengine_eventlog_analyzer 19
manageengine_network_configuration_manager 14
manageengine_pam360 14
manageengine_remote_access_plus 14
manageengine_firewall_analyzer 12
manageengine_access_manager_plus 11
manageengine_it360 9
manageengine_log360 9
ManageEngine Exchange Reporter Plus 8
manageengine_endpoint_central 8
manageengine_oputils 8
manageengine_analytics_plus 7
manageengine_datasecurity_plus 6
manageengine_opmanager_msp 6
manageengine_opmanager_plus 6
manageengine_cloud_security_plus 5
manageengine_key_manager_plus 5
Quick Filters