Zohocorp ManageEngine Analytics Plus versions below 6100 are vulnerable to authenticated sensitive data exposure which allows the users to retrieve sensitive tokens associated to the org-admin account.
Metrics
Affected Vendors & Products
References
History
Wed, 27 Nov 2024 15:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Manageengine
Manageengine analytic Plus |
|
Weaknesses | CWE-276 | |
CPEs | cpe:2.3:a:manageengine:analytic_plus:*:*:*:*:*:*:*:* | |
Vendors & Products |
Manageengine
Manageengine analytic Plus |
|
Metrics |
ssvc
|
Wed, 27 Nov 2024 10:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | Zohocorp ManageEngine Analytics Plus versions below 6100 are vulnerable to authenticated sensitive data exposure which allows the users to retrieve sensitive tokens associated to the org-admin account. | |
Title | Sensitive Data Exposure | |
Weaknesses | CWE-200 | |
References |
| |
Metrics |
cvssV3_1
|
MITRE
Status: PUBLISHED
Assigner: ManageEngine
Published: 2024-11-27T09:54:07.999Z
Updated: 2024-11-27T14:28:29.127Z
Reserved: 2024-11-07T11:25:31.904Z
Link: CVE-2024-52323
Vulnrichment
Updated: 2024-11-27T14:28:18.411Z
NVD
Status : Received
Published: 2024-11-27T10:15:05.030
Modified: 2024-11-27T15:15:26.377
Link: CVE-2024-52323
Redhat
No data.