CVEDB API

Zohocorp ManageEngine Exchange Reporter Plus versions 5717 and below are vulnerable to the authenticated SQL injection in the reports module.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.014

EPSS Ranking 79.5%

CVSS Severity

CVSS v3 Score 8.3

References

Products affected by CVE-2024-38871

Zohocorp » Manageengine Exchange Reporter Plus » Version: N/A

cpe:2.3:a:zohocorp:manageengine_exchange_reporter_plus:-
Zohocorp » Manageengine Exchange Reporter Plus » Version: 5.4

cpe:2.3:a:zohocorp:manageengine_exchange_reporter_plus:5.4
Zohocorp » Manageengine Exchange Reporter Plus » Version: 5.5

cpe:2.3:a:zohocorp:manageengine_exchange_reporter_plus:5.5
Zohocorp » Manageengine Exchange Reporter Plus » Version: 5.6

cpe:2.3:a:zohocorp:manageengine_exchange_reporter_plus:5.6
Zohocorp » Manageengine Exchange Reporter Plus » Version: 5.7

cpe:2.3:a:zohocorp:manageengine_exchange_reporter_plus:5.7