Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Manageengine_admanager_plus
(Zohocorp)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 48 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2023-04-13 | CVE-2023-29084 | Zoho ManageEngine ADManager Plus before 7181 allows for authenticated users to exploit command injection via Proxy settings. | Manageengine_admanager_plus | 7.2 | ||
| 2022-11-18 | CVE-2022-42904 | Zoho ManageEngine ADManager Plus through 7151 allows authenticated admin users to execute the commands in proxy settings. | Manageengine_admanager_plus | 7.2 | ||
| 2022-04-18 | CVE-2022-29457 | Zoho ManageEngine ADSelfService Plus before 6121, ADAuditPlus 7060, Exchange Reporter Plus 5701, and ADManagerPlus 7131 allow NTLM Hash disclosure during certain storage-path configuration steps. | Manageengine_adaudit_plus, Manageengine_admanager_plus, Manageengine_adselfservice_plus, Manageengine_exchange_reporter_plus | 8.8 | ||
| 2021-09-21 | CVE-2021-37420 | Zoho ManageEngine ADSelfService Plus before 6112 is vulnerable to mail spoofing. | Manageengine_admanager_plus | 6.5 | ||
| 2021-09-21 | CVE-2021-37424 | ManageEngine ADSelfService Plus before 6112 is vulnerable to domain user account takeover. | Manageengine_admanager_plus | 9.8 | ||
| 2021-09-21 | CVE-2021-37741 | ManageEngine ADManager Plus before 7111 has Pre-authentication RCE vulnerabilities. | Manageengine_admanager_plus | 8.8 | ||
| 2021-09-22 | CVE-2021-37927 | Zoho ManageEngine ADManager Plus version 7110 and prior allows account takeover via SSO. | Manageengine_admanager_plus | 9.8 | ||
| 2021-11-11 | CVE-2021-42002 | Zoho ManageEngine ADManager Plus before 7115 is vulnerable to a filter bypass that leads to file-upload remote code execution. | Manageengine_admanager_plus | 9.8 | ||
| 2021-07-17 | CVE-2021-33911 | Zoho ManageEngine ADManager Plus before 7110 allows remote code execution. | Manageengine_admanager_plus | 9.8 | ||
| 2021-09-21 | CVE-2021-37419 | Zoho ManageEngine ADSelfService Plus before 6112 is vulnerable to SSRF. | Manageengine_admanager_plus | 7.5 |