vulnerability
Zoho ManageEngine ADAudit Plus: Authenticated SQL Injection Vulnerability (CVE-2024-36034)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 9 | (AV:N/AC:L/Au:S/C:C/I:C/A:P) | Apr 29, 2024 | Dec 18, 2024 | Feb 3, 2025 |
Severity
9
CVSS
(AV:N/AC:L/Au:S/C:C/I:C/A:P)
Published
Apr 29, 2024
Added
Dec 18, 2024
Modified
Feb 3, 2025
Description
An authenticated SQL Injection in aggregate reports search option has been fixed and released in ManageEngine ADAudit Plus version 8003.
Solution
zoho-manageengine-adaudit-plus-upgrade-latest
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.