Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

zohocorp manageengine key manager plus 6.0 vulnerabilities and exploits

(subscribe to this query)
6.5
CVSSv3
CVE-2022-24447
An issue exists in Zoho ManageEngine Key Manager Plus prior to 6200. A service exposed by the application allows a user, with the level Operator, to access stored SSL certificates and associated key pairs during export.
Zohocorp Manageengine Key Manager Plus 6.0Zohocorp Manageengine Key Manager PlusZohocorp Manageengine Key Manager Plus 6.1
5.4
CVSSv3
CVE-2021-28382
Zoho ManageEngine Key Manager Plus prior to 6001 allows Stored XSS on the user-management page while importing malicious user details from AD.
Zohocorp Manageengine Key Manager PlusZohocorp Manageengine Key Manager Plus 6.0
5.5
CVSSv3
CVE-2023-6105
An information disclosure vulnerability exists in multiple ManageEngine products that can result in encryption keys being exposed. A low-privileged OS user with access to the host where an affected ManageEngine product is installed can view and use the exposed key to decrypt prod...
Zohocorp Manageengine Mobile Device Manager Plus 10.1.2207.4Zohocorp Manageengine AppcreatorZohocorp Manageengine Analytics PlusZohocorp Manageengine Endpoint Central MspZohocorp Manageengine Endpoint CentralZohocorp Manageengine Remote Monitoring And ManagementZohocorp Manageengine Os DeployerZohocorp Manageengine Remote Access PlusZohocorp Manageengine Mobile Device Manager PlusZohocorp Manageengine Application Control PlusZohocorp Manageengine Vulnerability Manager PlusZohocorp Manageengine Browser Security PlusZohocorp Manageengine Patch Manager PlusZohocorp Manageengine Device Control PlusZohocorp Manageengine Endpoint Dlp PlusZohocorp Manageengine Adselfservice Plus 6.3Zohocorp Manageengine Adselfservice PlusZohocorp Manageengine Admanager PlusZohocorp Manageengine Admanager Plus 7.2Zohocorp Manageengine Adaudit Plus 7.2Zohocorp Manageengine Adaudit PlusZohocorp Manageengine Cloud Security Plus 4.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4651CVE-2024-34255elevation of privilegeCVE-2024-25529CVE-2024-4671NULL pointer dereferenceCVE-2024-25527template injectionCVE-2008-0166
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook