VYPR

ManageEngine Exchange Reporter Plus

by Zoho

CVEs (4)

  • CVE-2020-24786CriAug 31, 2020
    risk 0.65cvss 9.8epss 0.13

    An issue was discovered in Zoho ManageEngine Exchange Reporter Plus before build number 5510, AD360 before build number 4228, ADSelfService Plus before build number 5817, DataSecurity Plus before build number 6033, RecoverManager Plus before build number 6017, EventLog Analyzer…

  • CVE-2022-29457HigApr 18, 2022
    risk 0.61cvss 8.8epss 0.08

    Zoho ManageEngine ADSelfService Plus before 6121, ADAuditPlus 7060, Exchange Reporter Plus 5701, and ADManagerPlus 7131 allow NTLM Hash disclosure during certain storage-path configuration steps.

  • CVE-2024-21775HigFeb 16, 2024
    risk 0.54cvss 8.3epss 0.05

    Zoho ManageEngine Exchange Reporter Plus versions 5714 and below are vulnerable to the Authenticated SQL injection in report exporting feature.

  • CVE-2023-22624HigJan 17, 2023
    risk 0.49cvss 7.5epss 0.03

    Zoho ManageEngine Exchange Reporter Plus before 5708 allows attackers to conduct XXE attacks.