Vulnerabilities

CVE-2024-0253

by Fred · 02/02/2024

ManageEngine ADAudit Plus versions 7270 and below are vulnerable to the Authenticated SQL injection in home Graph-Data.

More information : https://www.manageengine.com/products/active-directory-audit/sqlfix-7271.html

Attack vector : NETWORK
Attack complexity : LOW
Privileges required : LOW
User interaction : NONE
Confidentiality impact : HIGH
Integrity impact : HIGH
Base score : 8.8
Base severity : HIGH
Exploitability score : 2.8
Impact score : 5.9

Similar

Tags: Cybersecurity Alert