Known Vulnerabilities for Manageengine Opmanager by Zohocorp
Listed below are 10 of the newest known vulnerabilities associated with "Manageengine Opmanager" by "Zohocorp".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2023-31099 json | Zoho ManageEngine OPManager through 126323 allows an authenticated user to achieve remote code execution via probe servers. | 8.8 - HIGH | 2023-05-04 | 2023-05-10 |
| CVE-2022-43473 json | A blind XML External Entity (XXE) vulnerability exists in the Add UCS Device functionality of ManageEngine OpManager 12.6.168... | 5.4 - MEDIUM | 2023-03-30 | 2023-11-07 |
| CVE-2022-38772 json | Zoho ManageEngine OpManager, OpManager Plus, OpManager MSP, Network Configuration Manager, NetFlow Analyzer, and OpUtils befo... | 8.8 - HIGH | 2022-08-29 | 2022-09-02 |
| CVE-2022-37024 json | Zoho ManageEngine OpManager, OpManager Plus, OpManager MSP, Network Configuration Manager, NetFlow Analyzer, and OpUtils befo... | 8.8 - HIGH | 2022-08-10 | 2022-08-16 |
| CVE-2022-36923 json | Zoho ManageEngine OpManager, OpManager Plus, OpManager MSP, Network Configuration Manager, NetFlow Analyzer, Firewall Analyze... | 7.5 - HIGH | 2022-08-10 | 2022-08-16 |
| CVE-2022-35404 json | ManageEngine Password Manager Pro 12100 and prior and OPManager 126100 and prior are vulnerable to unauthorized file and dire... | 8.2 - HIGH | 2022-07-18 | 2023-08-08 |
| CVE-2022-29535 json | Zoho ManageEngine OPManager through 125588 allows SQL Injection via a few default reports. | 9.8 - CRITICAL | 2022-05-05 | 2022-05-17 |
| CVE-2022-27908 json | Zoho ManageEngine OpManager before 125588 (and before 125603) is vulnerable to authenticated SQL Injection in the Inventory R... | 8.8 - HIGH | 2022-04-18 | 2022-04-26 |
| CVE-2021-44514 json | OpUtils in Zoho ManageEngine OpManager 12.5 before 125490 mishandles authentication for a few audit directories. | 9.8 - CRITICAL | 2021-12-09 | 2021-12-15 |
| CVE-2021-41288 json | Zoho ManageEngine OpManager version 125466 and below is vulnerable to SQL Injection in the getReportData API. | 9.8 - CRITICAL | 2021-09-30 | 2021-10-07 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Zohocorp | Manageengine Opmanager | 12.5 | |||
| Application | Zohocorp | Manageengine Opmanager | 12.5 | |||
| Application | Zohocorp | Manageengine Opmanager | 12.5 | |||
| Application | Zohocorp | Manageengine Opmanager | 12.5 | |||
| Application | Zohocorp | Manageengine Opmanager | 12.5 | |||
| Application | Zohocorp | Manageengine Opmanager | 12.5 | |||
| Application | Zohocorp | Manageengine Opmanager | 12.5 | |||
| Application | Zohocorp | Manageengine Opmanager | 12.5 | |||
| Application | Zohocorp | Manageengine Opmanager | 12.5 | |||
| Application | Zohocorp | Manageengine Opmanager | 12.5 | |||
| Application | Zohocorp | Manageengine Opmanager | 12.5 | |||
| Application | Zohocorp | Manageengine Opmanager | 12.5 | |||
| Application | Zohocorp | Manageengine Opmanager | 12.5 | |||
| Application | Zohocorp | Manageengine Opmanager | 12.5 | |||
| Application | Zohocorp | Manageengine Opmanager | 12.5 | |||
| Application | Zohocorp | Manageengine Opmanager | 12.5 | |||
| Application | Zohocorp | Manageengine Opmanager | 12.5 | |||
| Application | Zohocorp | Manageengine Opmanager | 12.5 | |||
| Application | Zohocorp | Manageengine Opmanager | 12.5 | |||
| Application | Zohocorp | Manageengine Opmanager | 12.5 |