CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-2291

Static credentials exist in the PostgreSQL data used in ManageEngine Access Manager Plus (AMP) build 4309, ManageEngine Password Manager Pro, and ManageEngine PAM360. These credentials could allow a malicious actor to modify configuration data that would escalate their permissions from that of a low-privileged user to an Administrative user.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 7.5%

CVSS Severity

CVSS v3 Score 7.8

References

Products affected by CVE-2023-2291

Zohocorp » Manageengine Access Manager Plus » Version: 4.3

cpe:2.3:a:zohocorp:manageengine_access_manager_plus:4.3
Zohocorp » Manageengine Pam360 » Version: N/A

cpe:2.3:a:zohocorp:manageengine_pam360:-
Zohocorp » Manageengine Pam360 » Version: 4.0

cpe:2.3:a:zohocorp:manageengine_pam360:4.0
Zohocorp » Manageengine Pam360 » Version: 4.1

cpe:2.3:a:zohocorp:manageengine_pam360:4.1
Zohocorp » Manageengine Pam360 » Version: 4.5

cpe:2.3:a:zohocorp:manageengine_pam360:4.5
Zohocorp » Manageengine Pam360 » Version: 5.0

cpe:2.3:a:zohocorp:manageengine_pam360:5.0
Zohocorp » Manageengine Pam360 » Version: 5.1

cpe:2.3:a:zohocorp:manageengine_pam360:5.1
Zohocorp » Manageengine Pam360 » Version: 5.2

cpe:2.3:a:zohocorp:manageengine_pam360:5.2
Zohocorp » Manageengine Pam360 » Version: 5.3

cpe:2.3:a:zohocorp:manageengine_pam360:5.3
Zohocorp » Manageengine Pam360 » Version: 5.4

cpe:2.3:a:zohocorp:manageengine_pam360:5.4
Zohocorp » Manageengine Pam360 » Version: 5.5

cpe:2.3:a:zohocorp:manageengine_pam360:5.5
Zohocorp » Manageengine Pam360 » Version: 5.7

cpe:2.3:a:zohocorp:manageengine_pam360:5.7
Zohocorp » Manageengine Pam360 » Version: 5.8

cpe:2.3:a:zohocorp:manageengine_pam360:5.8
Zohocorp » Manageengine Pam360 » Version: 5.9

cpe:2.3:a:zohocorp:manageengine_pam360:5.9
Zohocorp » Manageengine Pam360 » Version: 6.0

cpe:2.3:a:zohocorp:manageengine_pam360:6.0
Zohocorp » Manageengine Pam360 » Version: 6.1

cpe:2.3:a:zohocorp:manageengine_pam360:6.1
Zohocorp » Manageengine Pam360 » Version: 6.2

cpe:2.3:a:zohocorp:manageengine_pam360:6.2
Zohocorp » Manageengine Pam360 » Version: 6.3

cpe:2.3:a:zohocorp:manageengine_pam360:6.3
Zohocorp » Manageengine Pam360 » Version: 6.4

cpe:2.3:a:zohocorp:manageengine_pam360:6.4
Zohocorp » Manageengine Pam360 » Version: 6.5

cpe:2.3:a:zohocorp:manageengine_pam360:6.5
Zohocorp » Manageengine Pam360 » Version: 6.6

cpe:2.3:a:zohocorp:manageengine_pam360:6.6
Zohocorp » Manageengine Pam360 » Version: 6.7

cpe:2.3:a:zohocorp:manageengine_pam360:6.7
Zohocorp » Manageengine Pam360 » Version: 7.0

cpe:2.3:a:zohocorp:manageengine_pam360:7.0
Zohocorp » Manageengine Pam360 » Version: 7.1

cpe:2.3:a:zohocorp:manageengine_pam360:7.1
Zohocorp » Manageengine Pam360 » Version: 7.2

cpe:2.3:a:zohocorp:manageengine_pam360:7.2
Zohocorp » Manageengine Pam360 » Version: 7.3

cpe:2.3:a:zohocorp:manageengine_pam360:7.3
Zohocorp » Manageengine Password Manager Pro » Version: 10.0

cpe:2.3:a:zohocorp:manageengine_password_manager_pro:10.0
Zohocorp » Manageengine Password Manager Pro » Version: 10.1

cpe:2.3:a:zohocorp:manageengine_password_manager_pro:10.1
Zohocorp » Manageengine Password Manager Pro » Version: 10.2

cpe:2.3:a:zohocorp:manageengine_password_manager_pro:10.2
Zohocorp » Manageengine Password Manager Pro » Version: 10.3

cpe:2.3:a:zohocorp:manageengine_password_manager_pro:10.3
Zohocorp » Manageengine Password Manager Pro » Version: 10.4

cpe:2.3:a:zohocorp:manageengine_password_manager_pro:10.4
Zohocorp » Manageengine Password Manager Pro » Version: 10.5

cpe:2.3:a:zohocorp:manageengine_password_manager_pro:10.5
Zohocorp » Manageengine Password Manager Pro » Version: 11.0

cpe:2.3:a:zohocorp:manageengine_password_manager_pro:11.0
Zohocorp » Manageengine Password Manager Pro » Version: 11.1

cpe:2.3:a:zohocorp:manageengine_password_manager_pro:11.1
Zohocorp » Manageengine Password Manager Pro » Version: 11.2

cpe:2.3:a:zohocorp:manageengine_password_manager_pro:11.2
Zohocorp » Manageengine Password Manager Pro » Version: 11.3

cpe:2.3:a:zohocorp:manageengine_password_manager_pro:11.3
Zohocorp » Manageengine Password Manager Pro » Version: 12.0

cpe:2.3:a:zohocorp:manageengine_password_manager_pro:12.0
Zohocorp » Manageengine Password Manager Pro » Version: 12.1

cpe:2.3:a:zohocorp:manageengine_password_manager_pro:12.1
Zohocorp » Manageengine Password Manager Pro » Version: 12.2

cpe:2.3:a:zohocorp:manageengine_password_manager_pro:12.2
Zohocorp » Manageengine Password Manager Pro » Version: 12.3

cpe:2.3:a:zohocorp:manageengine_password_manager_pro:12.3
Zohocorp » Manageengine Password Manager Pro » Version: 12.4

cpe:2.3:a:zohocorp:manageengine_password_manager_pro:12.4
Zohocorp » Manageengine Password Manager Pro » Version: 13.0

cpe:2.3:a:zohocorp:manageengine_password_manager_pro:13.0
Zohocorp » Manageengine Password Manager Pro » Version: 4.6

cpe:2.3:a:zohocorp:manageengine_password_manager_pro:4.6
Zohocorp » Manageengine Password Manager Pro » Version: 4.7

cpe:2.3:a:zohocorp:manageengine_password_manager_pro:4.7
Zohocorp » Manageengine Password Manager Pro » Version: 4.8

cpe:2.3:a:zohocorp:manageengine_password_manager_pro:4.8
Zohocorp » Manageengine Password Manager Pro » Version: 5.0

cpe:2.3:a:zohocorp:manageengine_password_manager_pro:5.0
Zohocorp » Manageengine Password Manager Pro » Version: 5.1

cpe:2.3:a:zohocorp:manageengine_password_manager_pro:5.1
Zohocorp » Manageengine Password Manager Pro » Version: 5.2

cpe:2.3:a:zohocorp:manageengine_password_manager_pro:5.2
Zohocorp » Manageengine Password Manager Pro » Version: 5.3

cpe:2.3:a:zohocorp:manageengine_password_manager_pro:5.3
Zohocorp » Manageengine Password Manager Pro » Version: 5.4

cpe:2.3:a:zohocorp:manageengine_password_manager_pro:5.4
Zohocorp » Manageengine Password Manager Pro » Version: 6.0

cpe:2.3:a:zohocorp:manageengine_password_manager_pro:6.0
Zohocorp » Manageengine Password Manager Pro » Version: 6.1

cpe:2.3:a:zohocorp:manageengine_password_manager_pro:6.1
Zohocorp » Manageengine Password Manager Pro » Version: 6.2

cpe:2.3:a:zohocorp:manageengine_password_manager_pro:6.2
Zohocorp » Manageengine Password Manager Pro » Version: 6.3

cpe:2.3:a:zohocorp:manageengine_password_manager_pro:6.3
Zohocorp » Manageengine Password Manager Pro » Version: 6.4

cpe:2.3:a:zohocorp:manageengine_password_manager_pro:6.4
Zohocorp » Manageengine Password Manager Pro » Version: 6.5

cpe:2.3:a:zohocorp:manageengine_password_manager_pro:6.5
Zohocorp » Manageengine Password Manager Pro » Version: 6.6

cpe:2.3:a:zohocorp:manageengine_password_manager_pro:6.6
Zohocorp » Manageengine Password Manager Pro » Version: 6.7

cpe:2.3:a:zohocorp:manageengine_password_manager_pro:6.7
Zohocorp » Manageengine Password Manager Pro » Version: 6.8

cpe:2.3:a:zohocorp:manageengine_password_manager_pro:6.8
Zohocorp » Manageengine Password Manager Pro » Version: 6.9

cpe:2.3:a:zohocorp:manageengine_password_manager_pro:6.9
Zohocorp » Manageengine Password Manager Pro » Version: 7.0

cpe:2.3:a:zohocorp:manageengine_password_manager_pro:7.0
Zohocorp » Manageengine Password Manager Pro » Version: 7.1

cpe:2.3:a:zohocorp:manageengine_password_manager_pro:7.1
Zohocorp » Manageengine Password Manager Pro » Version: 7.5

cpe:2.3:a:zohocorp:manageengine_password_manager_pro:7.5
Zohocorp » Manageengine Password Manager Pro » Version: 7.6

cpe:2.3:a:zohocorp:manageengine_password_manager_pro:7.6
Zohocorp » Manageengine Password Manager Pro » Version: 8.0

cpe:2.3:a:zohocorp:manageengine_password_manager_pro:8.0
Zohocorp » Manageengine Password Manager Pro » Version: 8.1

cpe:2.3:a:zohocorp:manageengine_password_manager_pro:8.1
Zohocorp » Manageengine Password Manager Pro » Version: 8.2

cpe:2.3:a:zohocorp:manageengine_password_manager_pro:8.2
Zohocorp » Manageengine Password Manager Pro » Version: 8.3

cpe:2.3:a:zohocorp:manageengine_password_manager_pro:8.3
Zohocorp » Manageengine Password Manager Pro » Version: 8.4

cpe:2.3:a:zohocorp:manageengine_password_manager_pro:8.4
Zohocorp » Manageengine Password Manager Pro » Version: 8.5

cpe:2.3:a:zohocorp:manageengine_password_manager_pro:8.5
Zohocorp » Manageengine Password Manager Pro » Version: 8.6

cpe:2.3:a:zohocorp:manageengine_password_manager_pro:8.6
Zohocorp » Manageengine Password Manager Pro » Version: 8.7

cpe:2.3:a:zohocorp:manageengine_password_manager_pro:8.7
Zohocorp » Manageengine Password Manager Pro » Version: 9.0

cpe:2.3:a:zohocorp:manageengine_password_manager_pro:9.0
Zohocorp » Manageengine Password Manager Pro » Version: 9.1

cpe:2.3:a:zohocorp:manageengine_password_manager_pro:9.1
Zohocorp » Manageengine Password Manager Pro » Version: 9.2

cpe:2.3:a:zohocorp:manageengine_password_manager_pro:9.2
Zohocorp » Manageengine Password Manager Pro » Version: 9.3

cpe:2.3:a:zohocorp:manageengine_password_manager_pro:9.3
Zohocorp » Manageengine Password Manager Pro » Version: 9.4

cpe:2.3:a:zohocorp:manageengine_password_manager_pro:9.4
Zohocorp » Manageengine Password Manager Pro » Version: 9.5

cpe:2.3:a:zohocorp:manageengine_password_manager_pro:9.5
Zohocorp » Manageengine Password Manager Pro » Version: 9.6

cpe:2.3:a:zohocorp:manageengine_password_manager_pro:9.6
Zohocorp » Manageengine Password Manager Pro » Version: 9.7

cpe:2.3:a:zohocorp:manageengine_password_manager_pro:9.7
Zohocorp » Manageengine Password Manager Pro » Version: 9.8

cpe:2.3:a:zohocorp:manageengine_password_manager_pro:9.8
Zohocorp » Manageengine Password Manager Pro » Version: 9.9

cpe:2.3:a:zohocorp:manageengine_password_manager_pro:9.9

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-2291

Products

Pricing

Contact Us