Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

Manageengine Opmanager Security Vulnerabilities

cve
cve

CVE-2023-31099

Zoho ManageEngine OPManager through 126323 allows an authenticated user to achieve remote code execution via probe...

8.8CVSS

8.9AI Score

0.006EPSS

2023-05-04 02:15 AM
46
cve
cve

CVE-2022-38772

Zoho ManageEngine OpManager, OpManager Plus, OpManager MSP, Network Configuration Manager, NetFlow Analyzer, and OpUtils before 125658, 126003, 126105, and 126120 allow authenticated users to make database changes that lead to remote code execution in the NMAP...

8.8CVSS

8.9AI Score

0.009EPSS

2022-08-29 09:15 PM
29
4
cve
cve

CVE-2022-36923

Zoho ManageEngine OpManager, OpManager Plus, OpManager MSP, Network Configuration Manager, NetFlow Analyzer, Firewall Analyzer, and OpUtils before 2022-07-27 through 2022-07-28 (125657, 126002, 126104, and 126118) allow unauthenticated attackers to obtain a user's API key, and then access external....

7.5CVSS

7.4AI Score

0.004EPSS

2022-08-10 08:16 PM
402
8
cve
cve

CVE-2022-37024

Zoho ManageEngine OpManager, OpManager Plus, OpManager MSP, Network Configuration Manager, NetFlow Analyzer, and OpUtils before 2022-07-29 through 2022-07-30 ( 125658, 126003, 126105, and 126120) allow authenticated users to make database changes that lead to remote code...

8.8CVSS

8.9AI Score

0.006EPSS

2022-08-10 08:16 PM
31
6
cve
cve

CVE-2022-35404

ManageEngine Password Manager Pro 12100 and prior and OPManager 126100 and prior are vulnerable to unauthorized file and directory creation on a server...

8.2CVSS

8AI Score

0.004EPSS

2022-07-18 01:15 PM
30
4
cve
cve

CVE-2022-29535

Zoho ManageEngine OPManager through 125588 allows SQL Injection via a few default...

9.8CVSS

9.8AI Score

0.089EPSS

2022-05-05 11:15 PM
103
4
cve
cve

CVE-2022-27908

Zoho ManageEngine OpManager before 125588 (and before 125603) is vulnerable to authenticated SQL Injection in the Inventory Reports...

8.8CVSS

8.9AI Score

0.002EPSS

2022-04-18 01:15 PM
40
2
cve
cve

CVE-2021-44514

OpUtils in Zoho ManageEngine OpManager 12.5 before 125490 mishandles authentication for a few audit...

9.8CVSS

9.5AI Score

0.005EPSS

2021-12-09 08:15 PM
22
cve
cve

CVE-2021-40493

Zoho ManageEngine OpManager before 125437 is vulnerable to SQL Injection in the support diagnostics module. This occurs via the pollingObject parameter of the getDataCollectionFailureReason...

9.8CVSS

9.8AI Score

0.02EPSS

2021-10-13 11:15 PM
25
cve
cve

CVE-2021-41075

The NetFlow Analyzer in Zoho ManageEngine OpManger before 125455 is vulnerable to SQL Injection in the Attacks Module...

9.8CVSS

9.8AI Score

0.01EPSS

2021-10-13 11:15 PM
27
cve
cve

CVE-2021-41288

Zoho ManageEngine OpManager version 125466 and below is vulnerable to SQL Injection in the getReportData...

9.8CVSS

9.8AI Score

0.01EPSS

2021-09-30 07:15 PM
23
cve
cve

CVE-2021-3287

Zoho ManageEngine OpManager before 12.5.329 allows unauthenticated Remote Code Execution due to a general bypass in the deserialization...

9.8CVSS

9.7AI Score

0.394EPSS

2021-04-22 01:15 PM
51
4
cve
cve

CVE-2021-20078

Manage Engine OpManager builds below 125346 are vulnerable to a remote denial of service vulnerability due to a path traversal issue in spark gateway component. This allows a remote attacker to remotely delete any directory or directories on the...

9.1CVSS

8.9AI Score

0.142EPSS

2021-04-01 07:15 PM
43
cve
cve

CVE-2020-28653

Zoho ManageEngine OpManager Stable build before 125203 (and Released build before 125233) allows Remote Code Execution via the Smart Update Manager (SUM)...

9.8CVSS

9.6AI Score

0.637EPSS

2021-02-03 04:15 PM
70
10