CVE-2024-27313

MEDIUM

Zoho ManageEngine PAM360 - 6610 - XSS

Title source: llm
STIX 2.1

Description

Zoho ManageEngine PAM360 is vulnerable to Stored XSS vulnerability. This vulnerability is applicable only in the version 6610.

Scores

CVSS v3 6.3
EPSS 0.0129
EPSS Percentile 67.0%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:H/A:N

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact partial

Details

CWE
CWE-79
Status published
Products (1)
zohocorp/manageengine_pam360 6.6 build6610
Published May 29, 2024
Tracked Since Feb 18, 2026