Lucene search
ManageEngineCVELIST:CVE-2024-0253HistoryFeb 02, 2024 - 12:50 p.m.
CVE-2024-0253 SQL Injection
2024-02-0212:50:35
CWE-89
ManageEngine
www.cve.org
3
cve-2024-0253
manageengine adaudit plus
authenticated sql injection
vulnerability
CVSS3
8.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L
AI Score
9.7
Confidence
High
EPSS
0.004
Percentile
75.2%
ManageEngine ADAudit Plus versionsย 7270ย and below are vulnerable to the Authenticated SQL injection inย home Graph-Data.
CNA Affected
[
{
"collectionURL": "https://www.manageengine.com/products/download.html",
"defaultStatus": "affected",
"platforms": [
"Windows"
],
"product": "ADAudit Plus",
"vendor": "ManageEngine",
"versions": [
{
"lessThan": "7270",
"status": "affected",
"version": "0",
"versionType": "6401"
}
]
}
]Related
cve
cve
CVE-2024-0253
2024-02-02 13:15:09
prion
prion
Sql injection
2024-02-02 13:15:00
vulnrichment
vulnrichment
CVE-2024-0253 SQL Injection
2024-02-02 12:50:35
nvd
nvd
CVE-2024-0253
2024-02-02 13:15:09
nessus
nessus
ManageEngine ADAudit Plus < Build 7271 Multiple Vulnerabilities
2024-02-07 00:00:00
CVSS3
8.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L
AI Score
9.7
Confidence
High
EPSS
0.004
Percentile
75.2%
Related for CVELIST:CVE-2024-0253