Known Vulnerabilities for Manageengine Adselfservice Plus by Zohocorp
Listed below are 10 of the newest known vulnerabilities associated with "Manageengine Adselfservice Plus" by "Zohocorp".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2024-0252 json | 8.8 - HIGH | 2024-01-11 | 2024-01-19 | |
| CVE-2023-35854 json | ** DISPUTED ** Zoho ManageEngine ADSelfService Plus through 6113 has an authentication bypass that can be exploited to steal ... | 9.8 - CRITICAL | 2023-06-20 | 2023-11-07 |
| CVE-2023-35719 json | ManageEngine ADSelfService Plus GINA Client Insufficient Verification of Data Authenticity Authentication Bypass Vulnerabilit... | 6.8 - MEDIUM | 2023-09-06 | 2023-09-11 |
| CVE-2023-28342 json | Zoho ManageEngine ADSelfService Plus before 6218 allows anyone to conduct a Denial-of-Service attack via the Mobile App Authe... | 7.5 - HIGH | 2023-04-05 | 2023-04-12 |
| CVE-2022-47966 json | Multiple Zoho ManageEngine on-premise products, such as ServiceDesk Plus through 14003, allow remote code execution due to us... | 9.8 - CRITICAL | 2023-01-18 | 2023-09-11 |
| CVE-2022-36413 json | Zoho ManageEngine ADSelfService Plus through 6203 is vulnerable to a brute-force attack that leads to a password reset on IDM... | 9.1 - CRITICAL | 2023-03-23 | 2023-03-30 |
| CVE-2022-34829 json | Zoho ManageEngine ADSelfService Plus before 6203 allows a denial of service (application restart) via a crafted payload to th... | 7.5 - HIGH | 2022-07-04 | 2022-07-13 |
| CVE-2022-29457 json | Zoho ManageEngine ADSelfService Plus before 6121, ADAuditPlus 7060, Exchange Reporter Plus 5701, and ADManagerPlus 7131 allow... | 8.8 - HIGH | 2022-04-18 | 2022-09-30 |
| CVE-2022-28987 json | Zoho ManageEngine ADSelfService Plus before 6202 allows attackers to perform username enumeration via a crafted POST request ... | 5.3 - MEDIUM | 2022-05-20 | 2022-07-02 |
| CVE-2022-28810 json | Zoho ManageEngine ADSelfService Plus before build 6122 allows a remote authenticated administrator to execute arbitrary opera... | 6.8 - MEDIUM | 2022-04-18 | 2023-08-08 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Zohocorp | Manageengine Adselfservice Plus | 6.0 | |||
| Application | Zohocorp | Manageengine Adselfservice Plus | 6.0 | |||
| Application | Zohocorp | Manageengine Adselfservice Plus | 6.0 | |||
| Application | Zohocorp | Manageengine Adselfservice Plus | 6.0 | |||
| Application | Zohocorp | Manageengine Adselfservice Plus | 6.0 | |||
| Application | Zohocorp | Manageengine Adselfservice Plus | 6.0 | |||
| Application | Zohocorp | Manageengine Adselfservice Plus | 6.0 | |||
| Application | Zohocorp | Manageengine Adselfservice Plus | 6.0 | |||
| Application | Zohocorp | Manageengine Adselfservice Plus | 6.0 | |||
| Application | Zohocorp | Manageengine Adselfservice Plus | 6.0 | |||
| Application | Zohocorp | Manageengine Adselfservice Plus | 5.8 | |||
| Application | Zohocorp | Manageengine Adselfservice Plus | 5.8 | |||
| Application | Zohocorp | Manageengine Adselfservice Plus | 5.8 | |||
| Application | Zohocorp | Manageengine Adselfservice Plus | 5.8 | |||
| Application | Zohocorp | Manageengine Adselfservice Plus | 5.8 | |||
| Application | Zohocorp | Manageengine Adselfservice Plus | 5.8 | |||
| Application | Zohocorp | Manageengine Adselfservice Plus | 5.8 | |||
| Application | Zohocorp | Manageengine Adselfservice Plus | 5.8 | |||
| Application | Zohocorp | Manageengine Adselfservice Plus | 5.8 | |||
| Application | Zohocorp | Manageengine Adselfservice Plus | 5.8 |