Beyond security

Language

CVE Vulnerabilities

Posts & Pages

No results found for ""

Try different keywords or check spelling

Search in CVE database, posts & pages • Press ESC to close

CVE-2024-5678

Medium

Low Medium High Critical

4.7

CVSS Score

Published: Aug 01, 2024

Last Modified: Aug 15, 2024

Vulnerability Description

Zohocorp ManageEngine Applications Manager versions 170900 and below are vulnerable to the authenticated admin-only SQL Injection in the Create Monitor feature.

CVSS Metrics

Common Vulnerability Scoring System

Vector String:

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L

Attack Vector

N

Attack Complexity

L

Privileges Required

H

User Interaction

N

Scope

U

Confidentiality

L

Integrity

L

Availability

L

Known Affected Software

57 configuration(s) from 1 vendor(s)

manageengine_applications_manager

Version:

13.1

CPE:

cpe:2.3:a:zohocorp:manageengine_applications_manager:13.1:build13100:*:*:*:*:*:*

manageengine_applications_manager

Version:

14.9

CPE:

cpe:2.3:a:zohocorp:manageengine_applications_manager:14.9:-:*:*:*:*:*:*

manageengine_applications_manager

Version:

17.0

CPE:

cpe:2.3:a:zohocorp:manageengine_applications_manager:17.0:build170005:*:*:*:*:*:*

manageengine_applications_manager

Version:

16.5

CPE:

cpe:2.3:a:zohocorp:manageengine_applications_manager:16.5:build16591:*:*:*:*:*:*

manageengine_applications_manager

Version:

16.0

CPE:

cpe:2.3:a:zohocorp:manageengine_applications_manager:16.0:build16000:*:*:*:*:*:*

manageengine_applications_manager

Version:

11.7

CPE:

cpe:2.3:a:zohocorp:manageengine_applications_manager:11.7:build11700:*:*:*:*:*:*

manageengine_applications_manager

Version:

16.7

CPE:

cpe:2.3:a:zohocorp:manageengine_applications_manager:16.7:build16705:*:*:*:*:*:*

manageengine_applications_manager

Version:

16.2

CPE:

cpe:2.3:a:zohocorp:manageengine_applications_manager:16.2:build16200:*:*:*:*:*:*

manageengine_applications_manager

Version:

16.6

CPE:

cpe:2.3:a:zohocorp:manageengine_applications_manager:16.6:build16690:*:*:*:*:*:*

manageengine_applications_manager

Version:

11.1

CPE:

cpe:2.3:a:zohocorp:manageengine_applications_manager:11.1:build11110:*:*:*:*:*:*

manageengine_applications_manager

Version:

11.9

CPE:

cpe:2.3:a:zohocorp:manageengine_applications_manager:11.9:build11900:*:*:*:*:*:*

manageengine_applications_manager

Version:

12.0

CPE:

cpe:2.3:a:zohocorp:manageengine_applications_manager:12.0:build12000:*:*:*:*:*:*

manageengine_applications_manager

Version:

12.4

CPE:

cpe:2.3:a:zohocorp:manageengine_applications_manager:12.4:*:*:*:*:*:*:*

manageengine_applications_manager

Version:

11.8

CPE:

cpe:2.3:a:zohocorp:manageengine_applications_manager:11.8:build11800:*:*:*:*:*:*

manageengine_applications_manager

Version:

12.8

CPE:

cpe:2.3:a:zohocorp:manageengine_applications_manager:12.8:build12810:*:*:*:*:*:*

manageengine_applications_manager

Version:

15.9

CPE:

cpe:2.3:a:zohocorp:manageengine_applications_manager:15.9:build15990:*:*:*:*:*:*

manageengine_applications_manager

Version:

14.3

CPE:

cpe:2.3:a:zohocorp:manageengine_applications_manager:14.3:build14300:*:*:*:*:*:*

manageengine_applications_manager

Version:

11.3

CPE:

cpe:2.3:a:zohocorp:manageengine_applications_manager:11.3:build11300:*:*:*:*:*:*

manageengine_applications_manager

Version:

13.7

CPE:

cpe:2.3:a:zohocorp:manageengine_applications_manager:13.7:build13740:*:*:*:*:*:*

manageengine_applications_manager

Version:

12.5

CPE:

cpe:2.3:a:zohocorp:manageengine_applications_manager:12.5:build12500:*:*:*:*:*:*

manageengine_applications_manager

Version:

14.1

CPE:

cpe:2.3:a:zohocorp:manageengine_applications_manager:14.1:build14100:*:*:*:*:*:*

manageengine_applications_manager

Version:

14.7

CPE:

cpe:2.3:a:zohocorp:manageengine_applications_manager:14.7:build14750:*:*:*:*:*:*

manageengine_applications_manager

Version:

13.2

CPE:

cpe:2.3:a:zohocorp:manageengine_applications_manager:13.2:build13200:*:*:*:*:*:*

manageengine_applications_manager

Version:

11.4

CPE:

cpe:2.3:a:zohocorp:manageengine_applications_manager:11.4:build11410:*:*:*:*:*:*

manageengine_applications_manager

Version:

14.4

CPE:

cpe:2.3:a:zohocorp:manageengine_applications_manager:14.4:build14400:*:*:*:*:*:*

manageengine_applications_manager

Version:

15.2

CPE:

cpe:2.3:a:zohocorp:manageengine_applications_manager:15.2:-:*:*:*:*:*:*

manageengine_applications_manager

Version:

12.9

CPE:

cpe:2.3:a:zohocorp:manageengine_applications_manager:12.9:build12900:*:*:*:*:*:*

manageengine_applications_manager

Version:

11.2

CPE:

cpe:2.3:a:zohocorp:manageengine_applications_manager:11.2:build11200:*:*:*:*:*:*

manageengine_applications_manager

Version:

13.9

CPE:

cpe:2.3:a:zohocorp:manageengine_applications_manager:13.9:build13900:*:*:*:*:*:*

manageengine_applications_manager

Version:

15.0

CPE:

cpe:2.3:a:zohocorp:manageengine_applications_manager:15.0:-:*:*:*:*:*:*

manageengine_applications_manager

Version:

13.6

CPE:

cpe:2.3:a:zohocorp:manageengine_applications_manager:13.6:build13600:*:*:*:*:*:*

manageengine_applications_manager

Version:

12.6

CPE:

cpe:2.3:a:zohocorp:manageengine_applications_manager:12.6:build12600:*:*:*:*:*:*

manageengine_applications_manager

Version:

11.0

CPE:

cpe:2.3:a:zohocorp:manageengine_applications_manager:11.0:build11010:*:*:*:*:*:*

manageengine_applications_manager

Version:

12.1

CPE:

cpe:2.3:a:zohocorp:manageengine_applications_manager:12.1:build12100:*:*:*:*:*:*

manageengine_applications_manager

Version:

11.6

CPE:

cpe:2.3:a:zohocorp:manageengine_applications_manager:11.6:build11610:*:*:*:*:*:*

manageengine_applications_manager

Version:

16.8

CPE:

cpe:2.3:a:zohocorp:manageengine_applications_manager:16.8:build16845:*:*:*:*:*:*

manageengine_applications_manager

Version:

15.5

CPE:

cpe:2.3:a:zohocorp:manageengine_applications_manager:15.5:-:*:*:*:*:*:*

manageengine_applications_manager

Version:

13.13820

CPE:

cpe:2.3:a:zohocorp:manageengine_applications_manager:13.13820:*:*:*:*:*:*:*

manageengine_applications_manager

Version:

14.0

CPE:

cpe:2.3:a:zohocorp:manageengine_applications_manager:14.0:build14841:*:*:*:*:*:*

manageengine_applications_manager

Version:

14.6

CPE:

cpe:2.3:a:zohocorp:manageengine_applications_manager:14.6:-:*:*:*:*:*:*

manageengine_applications_manager

Version:

14.2

CPE:

cpe:2.3:a:zohocorp:manageengine_applications_manager:14.2:-:*:*:*:*:*:*

manageengine_applications_manager

Version:

13.5

CPE:

cpe:2.3:a:zohocorp:manageengine_applications_manager:13.5:build13500:*:*:*:*:*:*

manageengine_applications_manager

Version:

12.3

CPE:

cpe:2.3:a:zohocorp:manageengine_applications_manager:12.3:build12300:*:*:*:*:*:*

manageengine_applications_manager

Version:

15.1

CPE:

cpe:2.3:a:zohocorp:manageengine_applications_manager:15.1:-:*:*:*:*:*:*

manageengine_applications_manager

Version:

13.8

CPE:

cpe:2.3:a:zohocorp:manageengine_applications_manager:13.8:build13800:*:*:*:*:*:*

manageengine_applications_manager

Version:

12.7

CPE:

cpe:2.3:a:zohocorp:manageengine_applications_manager:12.7:build12700:*:*:*:*:*:*

manageengine_applications_manager

Version:

11.5

CPE:

cpe:2.3:a:zohocorp:manageengine_applications_manager:11.5:build11520:*:*:*:*:*:*

manageengine_applications_manager

Version:

14.8

CPE:

cpe:2.3:a:zohocorp:manageengine_applications_manager:14.8:*:*:*:*:*:*:*

manageengine_applications_manager

Version:

16.1

CPE:

cpe:2.3:a:zohocorp:manageengine_applications_manager:16.1:build16110:*:*:*:*:*:*

manageengine_applications_manager

Version:

13.0

CPE:

cpe:2.3:a:zohocorp:manageengine_applications_manager:13.0:build13000:*:*:*:*:*:*

manageengine_applications_manager

Version:

13

CPE:

cpe:2.3:a:zohocorp:manageengine_applications_manager:13:*:*:*:*:*:*:*

manageengine_applications_manager

Version:

13.3

CPE:

cpe:2.3:a:zohocorp:manageengine_applications_manager:13.3:build13300:*:*:*:*:*:*

manageengine_applications_manager

Version:

12.2

CPE:

cpe:2.3:a:zohocorp:manageengine_applications_manager:12.2:build12200:*:*:*:*:*:*

manageengine_applications_manager

Version:

13.4

CPE:

cpe:2.3:a:zohocorp:manageengine_applications_manager:13.4:build13400:*:*:*:*:*:*

manageengine_applications_manager

Version:

16.3

CPE:

cpe:2.3:a:zohocorp:manageengine_applications_manager:16.3:build16300:*:*:*:*:*:*

manageengine_applications_manager

Version:

14.5

CPE:

cpe:2.3:a:zohocorp:manageengine_applications_manager:14.5:build14550:*:*:*:*:*:*

manageengine_applications_manager

Version:

16.4

CPE:

cpe:2.3:a:zohocorp:manageengine_applications_manager:16.4:build16400:*:*:*:*:*:*

This vulnerability affects 57 software configuration(s). Ensure you patch all affected systems.

References & Resources

https://www.manageengine.com/products/applications_manager/security-updates/security-updates-cve-2024-5678.html
0fc0942c-577d-436f-ae8e-945763c79b02 Vendor Advisory

Severity Details

4.7

out of 10.0

Medium

Key Information

Published Date: August 01, 2024

External Resources

NIST

National Vulnerability Database

Detailed vulnerability info

Official CVE record

Related News Articles

Latest news and updates about CVE-2024-5678

Jan 13, 2026

LiveMatch Hijacking Incident: Bad Actors Target Apex Legends

Apex Legends players experienced a severe disruption during live matches as bad actors hijacked their characters, disconnected them, and changed…

Cybercriminals Exploit Vulnerability in Chinese Surveillance Cameras - vulnerability exploitation, Chinese surveillance cameras, CVE-2024-5678

Jan 13, 2026

Cybercriminals Exploit Vulnerability in Chinese Surveillance Cameras

Tens of thousands of Chinese surveillance cameras remain vulnerable to a critical, 11-month-old CVE, leaving organizations exposed to potential data…

SAP Unveils Critical Security Patches for January 2026 Update - SAP, security update, SQL injection

Jan 13, 2026

SAP Unveils Critical Security Patches for January 2026 Update

SAP January 2026 Security Update: Patching Critical SQL Injection, RCE, and Code Injection Vulnerabilities

Microsoft Edge Security Vulnerabilities Discovered - Microsoft Edge, vulnerabilities, security

Jan 02, 2026

Microsoft Edge Security Vulnerabilities Discovered

Microsoft Edge has been found to have several security vulnerabilities that could allow attackers to cause unspecified issues within the…

Multiple Vulnerabilities Discovered in Red Hat Linux Kernel (December 19, 2025) - Red Hat, Linux kernel, vulnerabilities

Jan 02, 2026

Multiple Vulnerabilities Discovered in Red Hat Linux Kernel (December 19, 2025)

CERT-FR reports multiple vulnerabilities in the Red Hat Linux kernel, including CVE-2024-1234, CVE-2024-5678, and CVE-2024-9101. Immediate action is required to…

Multiple Vulnerabilities Discovered in SUSE Linux Kernel - SUSE Linux, kernel vulnerabilities, data protection

Jan 02, 2026

Multiple Vulnerabilities Discovered in SUSE Linux Kernel

Multiple vulnerabilities have been discovered in the SUSE Linux kernel, posing risks to data confidentiality, integrity, and security policies.

View All Related Articles