Vulnerability Details CVE-2024-36515
Zohocorp ManageEngine ADAudit Plus versions below 8000 are vulnerable to the authenticated SQL injection in dashboard.
Note: This vulnerability is different from another vulnerability (CVE-2024-36516), both of which have affected ADAudit Plus' dashboard.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.009
EPSS Ranking 75.0%
CVSS Severity
CVSS v3 Score 8.3
Products affected by CVE-2024-36515
-
cpe:2.3:a:zohocorp:manageengine_adaudit_plus:-
-
cpe:2.3:a:zohocorp:manageengine_adaudit_plus:4.1.0
-
cpe:2.3:a:zohocorp:manageengine_adaudit_plus:4.5.0
-
cpe:2.3:a:zohocorp:manageengine_adaudit_plus:5.0.0
-
cpe:2.3:a:zohocorp:manageengine_adaudit_plus:5.1
-
cpe:2.3:a:zohocorp:manageengine_adaudit_plus:6.0
-
cpe:2.3:a:zohocorp:manageengine_adaudit_plus:6.0.1
-
cpe:2.3:a:zohocorp:manageengine_adaudit_plus:7.0
-
cpe:2.3:a:zohocorp:manageengine_adaudit_plus:7.0.0
-
cpe:2.3:a:zohocorp:manageengine_adaudit_plus:7.1.1
-
cpe:2.3:a:zohocorp:manageengine_adaudit_plus:7.2