Zoho Corporation ManageEngine ADAudit Plus 8.1 8100

CPE Details

Zoho Corporation ManageEngine ADAudit Plus 8.1 8100
zohocorp
manageengine_adaudit_plus
8.1
2024-09-04
18h07 +00:00
2024-09-04
18h07 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:zohocorp:manageengine_adaudit_plus:8.1:8100:*:*:*:*:*:*

Informations

Vendor

zohocorp

Product

manageengine_adaudit_plus

Version

8.1

Update

8100

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2025-41444 2025-06-09 11h14 +00:00 Zohocorp ManageEngine ADAudit Plus versions 8510 and prior are vulnerable to authenticated SQL injection in the alerts module.
8.3
High
CVE-2025-36528 2025-06-09 11h12 +00:00 Zohocorp ManageEngine ADAudit Plus versions 8510 and prior are vulnerable to authenticated SQL injection in Service Account Auditing reports.
8.3
High
CVE-2025-27709 2025-06-09 11h04 +00:00 Zohocorp ManageEngine ADAudit Plus versions 8510 and prior are vulnerable to authenticated SQL injection in the Service Account Auditing reports.
8.3
High
CVE-2025-41407 2025-05-23 10h29 +00:00 Zohocorp ManageEngine ADAudit Plus versions below 8511 are vulnerable to SQL injection in the OU History report.
8.3
High
CVE-2025-36527 2025-05-23 10h28 +00:00 Zohocorp ManageEngine ADAudit Plus versions below 8511 are vulnerable to SQL injection while exporting reports.
8.3
High
CVE-2025-41403 2025-05-22 10h39 +00:00 Zohocorp ManageEngine ADAudit Plus versions 8510 and prior are vulnerable to authenticated SQL injection while fetching service account audit data.
8.3
High
CVE-2025-3836 2025-05-22 10h38 +00:00 Zohocorp ManageEngine ADAudit Plus versions 8510 and prior are vulnerable to authenticated SQL injection in the logon events aggregate report.
8.3
High
CVE-2025-3834 2025-05-14 11h05 +00:00 Zohocorp ManageEngine ADAudit Plus versions 8510 and prior are vulnerable to authenticated SQL injection in the OU History report.
8.1
High
CVE-2024-49574 2024-11-18 07h55 +00:00 Zohocorp ManageEngine ADAudit Plus versions below 8123 are vulnerable to SQL Injection in the reports module.
8.8
High
CVE-2024-36485 2024-11-04 11h13 +00:00 Zohocorp ManageEngine ADAudit Plus versions below 8121 are vulnerable to SQL Injection in Technician reports option.
8.8
High
CVE-2024-5608 2024-10-24 11h42 +00:00 Zohocorp ManageEngine ADAudit Plus versions below 8121 are vulnerable to SQL Injection in the technician reports feature.
8.3
High
CVE-2024-5586 2024-08-23 13h54 +00:00 Zohocorp ManageEngine ADAudit Plus versions below 8121 are vulnerable to the authenticated SQL injection in extranet lockouts report option.
8.8
High
CVE-2024-5467 2024-08-23 13h28 +00:00 Zohocorp ManageEngine ADAudit Plus versions below 8121 are vulnerable to the authenticated SQL injection in account lockout report.
8.8
High
CVE-2024-36518 2024-08-12 07h13 +00:00 Zohocorp ManageEngine ADAudit Plus versions below 8110 are vulnerable to authenticated SQL Injection in attack surface analyzer's dashboard.
8.3
High
CVE-2024-5487 2024-08-12 07h04 +00:00 Zohocorp ManageEngine ADAudit Plus versions below 8110 are vulnerable to authenticated SQL Injection in attack surface analyzer's export option.
8.8
High
CVE-2024-5527 2024-08-12 05h31 +00:00 Zohocorp ManageEngine ADAudit Plus versions below 8110 are vulnerable to authenticated SQL Injection in file auditing configuration.
8.8
High
The information presented on CVE Find originates from several carefully selected reference sources. CVE data is provided by MITRE Corporation and the National Vulnerability Database (NVD). The Known Exploited Vulnerabilities (KEV) catalog is sourced from the Cybersecurity and Infrastructure Security Agency (CISA), while EPSS scores come from FIRST.org. Additionally, data regarding software weaknesses (CWE) and common attack patterns (CAPEC) is maintained by MITRE Corporation, and information on hardware and software configurations (CPE) is provided by the NVD.