CVE-2024-9097

Low CVSS: 3.5

ManageEngine Endpoint Central versions before 11.3.2440.09 are vulnerable to IDOR vulnerability which allows the attacker to change the username in the chat.

Vendor

Zohocorp

Product

Manageengine Endpoint Central

CWE

CWE-639

Yayın Tarihi

2025-02-05 13:15:23

Güncelleme

2025-10-22 20:27:48

Source Identifier

0fc0942c-577d-436f-ae8e-945763c79b02

KEV Date Added

Kategoriler

CWE-639 Manageengine Endpoint Central LOW Zohocorp 2025

Referanslar

https://www.manageengine.com/products/desktop-central/cve-2024-9097.html

Benzer Kayıtlar

High

CVE-2026-27655

Zohocorp ManageEngine Exchange Reporter Plus versions before 5802 are vulnerable to Stored XSS in Permissions Based on M…

High

CVE-2026-4107

Zohocorp ManageEngine Exchange Reporter Plus versions before 5802 are vulnerable to Stored XSS in Folder Message Count a…

High

CVE-2026-4108

Zohocorp ManageEngine Exchange Reporter Plus versions before 5802 are vulnerable to Stored XSS in Non-Owner Mailbox Perm…

High

CVE-2026-3879

Zohocorp ManageEngine Exchange Reporter Plus versions before 5802 are vulnerable to Stored XSS in Equipment Mailbox Deta…

High

CVE-2026-3880

Zohocorp ManageEngine Exchange Reporter Plus versions before 5802 are vulnerable to Stored XSS in Public Folder Client P…

High

CVE-2026-28703

Zohocorp ManageEngine Exchange Reporter Plus versions before 5802 are vulnerable to Stored XSS in Mails Exchanged Betwee…