Known Vulnerabilities for Manageengine Assetexplorer by Zohocorp
Listed below are 10 of the newest known vulnerabilities associated with "Manageengine Assetexplorer" by "Zohocorp".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2023-35785 json | Zoho ManageEngine Active Directory 360 versions 4315 and below, ADAudit Plus 7202 and below, ADManager Plus 7200 and below, A... | 8.1 - HIGH | 2023-08-28 | 2024-03-12 |
| CVE-2023-29443 json | Zoho ManageEngine ServiceDesk Plus before 14105, ServiceDesk Plus MSP before 14200, SupportCenter Plus before 14200, and Asse... | 4.9 - MEDIUM | 2023-04-26 | 2023-06-26 |
| CVE-2023-26601 json | Zoho ManageEngine ServiceDesk Plus through 14104, Asset Explorer through 6987, ServiceDesk Plus MSP before 14000, and Support... | 7.5 - HIGH | 2023-03-06 | 2023-03-13 |
| CVE-2023-26600 json | ManageEngine ServiceDesk Plus through 14104, ServiceDesk Plus MSP through 14000, Support Center Plus through 14000, and Asset... | 6.5 - MEDIUM | 2023-03-06 | 2023-03-13 |
| CVE-2023-23075 json | Cross Site Scripting (XSS) vulnerability in Zoho Asset Explorer 6.9 via the credential name when creating a new Assets Workst... | 6.1 - MEDIUM | 2023-02-01 | 2023-02-08 |
| CVE-2022-47966 json | Multiple Zoho ManageEngine on-premise products, such as ServiceDesk Plus through 14003, allow remote code execution due to us... | 9.8 - CRITICAL | 2023-01-18 | 2023-09-11 |
| CVE-2022-40772 json | Zoho ManageEngine ServiceDesk Plus versions 13010 and prior are vulnerable to a validation bypass that allows users to access... | 6.5 - MEDIUM | 2022-11-23 | 2023-08-08 |
| CVE-2022-40771 json | Zoho ManageEngine ServiceDesk Plus versions 13010 and prior are vulnerable to an XML External Entity attack that leads to Inf... | 4.9 - MEDIUM | 2022-11-23 | 2022-11-29 |
| CVE-2022-35403 json | Zoho ManageEngine ServiceDesk Plus before 13008, ServiceDesk Plus MSP before 10606, and SupportCenter Plus before 11022 are a... | 7.5 - HIGH | 2022-07-12 | 2022-07-19 |
| CVE-2021-20110 json | Due to Manage Engine Asset Explorer Agent 1.0.34 not validating HTTPS certificates, an attacker on the network can statically... | 9.8 - CRITICAL | 2021-07-19 | 2022-06-28 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Zohocorp | Manageengine Assetexplorer | 6.5 | |||
| Application | Zohocorp | Manageengine Assetexplorer | 6.2.0 | |||
| Application | Zohocorp | Manageengine Assetexplorer | 6.1 | |||
| Application | Zohocorp | Manageengine Assetexplorer | 5.6 | |||
| Application | Zohocorp | Manageengine Assetexplorer | 5.6 | |||
| Application | Zohocorp | Manageengine Assetexplorer | 5.6 | |||
| Application | Zohocorp | Manageengine Assetexplorer | 5.6 | |||
| Application | Zohocorp | Manageengine Assetexplorer | 5.6 | |||
| Application | Zohocorp | Manageengine Assetexplorer | 5.6 | |||
| Application | Zohocorp | Manageengine Assetexplorer | 5.6 | |||
| Application | Zohocorp | Manageengine Assetexplorer | 5.6 | |||
| Application | Zohocorp | Manageengine Assetexplorer | 5.6 | |||
| Application | Zohocorp | Manageengine Assetexplorer | 5.6 | |||
| Application | Zohocorp | Manageengine Assetexplorer | 5.6 | |||
| Application | Zohocorp | Manageengine Assetexplorer | 5.6 | |||
| Application | Zohocorp | Manageengine Assetexplorer | 5.6 | |||
| Application | Zohocorp | Manageengine Assetexplorer | 5.6 | |||
| Application | Zohocorp | Manageengine Assetexplorer | 5.6 | |||
| Application | Zohocorp | Manageengine Assetexplorer | 5.6 | |||
| Application | Zohocorp | Manageengine Assetexplorer | 5.6 |