ГлавнаяУязвимости → CVE-2024-38872
8.3высокая

CVE-2024-38872

→ есть в БДУ: BDU:2024-05921 (на русском)
Описание (на английском; русское — в БДУ выше)

Zohocorp ManageEngine Exchange Reporter Plus versions 5717 and below are vulnerable to the authenticated SQL injection in the monitoring module.

Затрагиваемое ПО
Zohocorp Manageengine exchange reporter plus
CVSS
Балл8.3 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L
Источники
https://www.manageengine.com/products/exchange-reports/advisory/CVE-2024-38872.htmlhttps://www.manageengine.com/products/exchange-reports/advisory/CVE-2024-38872.html