Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
manageengine netflow analyzer - vulnerabilities and exploits
(subscribe to this query)
890
VMScore
CVE-2014-9373
Directory traversal vulnerability in the CollectorConfInfoServlet servlet in ManageEngine NetFlow Analyzer allows remote malicious users to execute arbitrary code via a .. (dot dot) in the filename.
Manageengine Netflow Analyzer -
668
VMScore
CVE-2021-41075
The NetFlow Analyzer in Zoho ManageEngine OpManger prior to 125455 is vulnerable to SQL Injection in the Attacks Module API.
Zohocorp Manageengine Opmanager
Zohocorp Manageengine Opmanager 12.5
668
VMScore
CVE-2019-12196
A SQL injection vulnerability in /client/api/json/v2/nfareports/compareReport in Zoho ManageEngine NetFlow Analyzer 12.3 allows malicious users to execute arbitrary SQL commands via the DeviceID parameter.
Zohocorp Manageengine Netflow Analyzer 12.3
668
VMScore
CVE-2015-2959
Zoho NetFlow Analyzer build 10250 and previous versions does not check for administrative authorization, which allows remote malicious users to obtain sensitive information, modify passwords, or remove accounts by leveraging the guest role.
Zohocorp Manageengine Netflow Analyzer -
641
VMScore
CVE-2019-12133
Multiple Zoho ManageEngine products suffer from local privilege escalation due to improper permissions for the %SYSTEMDRIVE%\ManageEngine directory and its sub-folders. Moreover, the services associated with said products try to execute binaries such as sc.exe from the current di...
Zohocorp Manageengine Mobile Device Manager Plus 9.0.0
Zohocorp Manageengine Patch Connect Plus 9.0.0
Zohocorp Manageengine Vulnerability Manager Plus 9.0.0
Zohocorp Manageengine Patch Manager Plus 9.0.0
Zohocorp Manageengine Browser Security Plus -
Zohocorp Manageengine Eventlog Analyzer 12.0.2
Zohocorp Manageengine Supportcenter Plus 8.1
Zohocorp Manageengine Opmanager 12.3
Zohocorp Manageengine Oputils 11.0
Zohocorp Manageengine Desktop Central 10.0.380
Zohocorp Manageengine Firewall 12.0
Zohocorp Manageengine Key Manager Plus 5.6
Zohocorp Manageengine Password Manager Pro 9.9
Zohocorp Manageengine Analytics Plus 1.0
Zohocorp Manageengine Servicedesk Plus 10.0.0
Zohocorp Manageengine O365 Manager Plus 4.0
Zohocorp Manageengine Netflow Analyzer 11.0
Zohocorp Manageengine Network Configuration Manager 11.0
605
VMScore
CVE-2015-2961
Cross-site request forgery (CSRF) vulnerability in Zoho NetFlow Analyzer build 10250 and previous versions allows remote malicious users to hijack the authentication of administrators.
Zohocorp Manageengine Netflow Analyzer -
505
VMScore
CVE-2014-5445
Multiple absolute path traversal vulnerabilities in ZOHO ManageEngine Netflow Analyzer 8.6 up to and including 10.2 and IT360 10.3 allow remote attackers or remote authenticated users to read arbitrary files via a full pathname in the schFilePath parameter to the (1) CSVServlet o...
Zohocorp Manageengine It360 10.3.0
Zohocorp Manageengine Netflow Analyzer
1 EDB exploit
505
VMScore
CVE-2014-5446
Directory traversal vulnerability in the DisplayChartPDF servlet in ZOHO ManageEngine Netflow Analyzer 8.6 up to and including 10.2 and IT360 10.3 allows remote attackers and remote authenticated users to read arbitrary files via a .. (dot dot) in the filename parameter.
Zohocorp Manageengine It360 10.3.0
Zohocorp Manageengine Netflow Analyzer 9.1
Zohocorp Manageengine Netflow Analyzer 9.5
Zohocorp Manageengine Netflow Analyzer 9.9
Zohocorp Manageengine Netflow Analyzer 10.0
Zohocorp Manageengine Netflow Analyzer 9.6
Zohocorp Manageengine Netflow Analyzer 9.7
Zohocorp Manageengine Netflow Analyzer 10.2
Zohocorp Manageengine Netflow Analyzer 9.8
Zohocorp Manageengine Netflow Analyzer 9.8.5
Zohocorp Manageengine Netflow Analyzer 8.6
Zohocorp Manageengine Netflow Analyzer 9.0
Zohocorp Manageengine Netflow Analyzer 9.8.6
Zohocorp Manageengine Netflow Analyzer 9.8.7
1 EDB exploit
455
VMScore
CVE-2007-3593
Multiple cross-site scripting (XSS) vulnerabilities in ManageEngine NetFlow Analyzer 5 allow remote malicious users to inject arbitrary web script or HTML via the (1) alpha parameter in (a) netflow/jspui/applicationList.jsp, the (2) task parameter in (b) netflow/jspui/appConfig.j...
Adventnet Manageengine Netflow Analyzer 5
5 EDB exploits
445
VMScore
CVE-2018-12997
Incorrect Access Control in FailOverHelperServlet in Zoho ManageEngine Netflow Analyzer before build 123137, Network Configuration Manager before build 123128, OpManager before build 123148, OpUtils before build 123161, and Firewall Analyzer before build 123147 allows malicious u...
Zohocorp Manageengine Netflow Analyzer -
Zohocorp Firewall Analyzer -
Zohocorp Manageengine Opmanager -
Zohocorp Manageengine Oputils -
Zohocorp Manageengine Network Configuration Manager -
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
spoof
CVE-2024-34928
CVE-2024-5291
deserialization
CVE-2024-4471
CVE-2024-4956
CVE-2024-32002
CVE-2024-5227
unspecified
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »