Zohocorp Manageengine It360 — known CVE vulnerabilities
Every CVE whose affected-product data names Zohocorp Manageengine It360, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (9)
CVE-2014-3997 — CVSS 7.5 (high): SQL injection vulnerability in the MetadataServlet servlet in ManageEngine Password Manager Pro (PMP) and Password Manager Pro Managed…
CVE-2014-7863 — CVSS 7.5 (high): The FailOverHelperServlet (aka FailServlet) servlet in ZOHO ManageEngine Applications Manager before 11.9 build 11912, OpManager 8 through…
CVE-2014-7866 — CVSS 7.5 (high): Multiple directory traversal vulnerabilities in ZOHO ManageEngine OpManager 8 (build 88xx) through 11.4, IT360 10.3 and 10.4, and Social IT…
CVE-2014-7867 — CVSS 7.5 (high): SQL injection vulnerability in the com.manageengine.opmanager.servlet.UpdateProbeUpgradeStatus servlet in ZOHO ManageEngine OpManager 11.3…
CVE-2014-7868 — CVSS 7.5 (high): Multiple SQL injection vulnerabilities in ZOHO ManageEngine OpManager 11.3 and 11.4, IT360 10.3 and 10.4, and Social IT Plus 11.0 allow…
CVE-2014-6036 — CVSS 6.4 (medium): Directory traversal vulnerability in the multipartRequest servlet in ZOHO ManageEngine OpManager 11.3 and earlier, Social IT Plus 11.0, and…
CVE-2014-5445 — CVSS 5.0 (medium): Multiple absolute path traversal vulnerabilities in ZOHO ManageEngine Netflow Analyzer 8.6 through 10.2 and IT360 10.3 allow remote…
CVE-2014-5446 — CVSS 5.0 (medium): Directory traversal vulnerability in the DisplayChartPDF servlet in ZOHO ManageEngine Netflow Analyzer 8.6 through 10.2 and IT360 10.3…
CVE-2014-6034 — CVSS 5.0 (medium): Directory traversal vulnerability in the com.me.opmanager.extranet.remote.communication.fw.fe.FileCollector servlet in ZOHO ManageEngine…