CVE-2024-24409

Published: Nov 8, 2024Modified: Nov 13, 2024

8.8

Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Exploitability: 2.8 / Impact: 5.9

Source: NVD

Description

Zohocorp ManageEngine ADManager Plus versions 7203 and prior are vulnerable to Privilege Escalation in the Modify Computers option.

Affected (84)

Products: Zohocorp: Manageengine Admanager Plus

Zohocorp

1 product

Manageengine Admanager Plus

Configuration A

84 vulnerable

Vulnerable Software	Affected Versions
Zohocorp Manageengine Admanager Plus	Version 6.1
Zohocorp Manageengine Admanager Plus	Version 6.1 6100
Zohocorp Manageengine Admanager Plus	Version 6.1 6101
Zohocorp Manageengine Admanager Plus	Version 6.1 6102
Zohocorp Manageengine Admanager Plus	Version 6.1 6103
Zohocorp Manageengine Admanager Plus	Version 6.1 6104
Zohocorp Manageengine Admanager Plus	Version 6.1 6105
Zohocorp Manageengine Admanager Plus	Version 6.1 6106
Zohocorp Manageengine Admanager Plus	Version 6.1 6107
Zohocorp Manageengine Admanager Plus	Version 6.1 6108
Zohocorp Manageengine Admanager Plus	Version 6.1 6109
Zohocorp Manageengine Admanager Plus	Version 6.1 6110
Zohocorp Manageengine Admanager Plus	Version 6.1 6111
Zohocorp Manageengine Admanager Plus	Version 6.2
Zohocorp Manageengine Admanager Plus	Version 6.5.7
Zohocorp Manageengine Admanager Plus	Version 6.6.5
Zohocorp Manageengine Admanager Plus	Version 6.6 6657
Zohocorp Manageengine Admanager Plus	Version 6.6 6660
Zohocorp Manageengine Admanager Plus	Version 7.0
Zohocorp Manageengine Admanager Plus	Version 7.0 7000
Zohocorp Manageengine Admanager Plus	Version 7.0 7010
Zohocorp Manageengine Admanager Plus	Version 7.0 7011
Zohocorp Manageengine Admanager Plus	Version 7.0 7020
Zohocorp Manageengine Admanager Plus	Version 7.0 7030
Zohocorp Manageengine Admanager Plus	Version 7.0 7040
Zohocorp Manageengine Admanager Plus	Version 7.0 7041
Zohocorp Manageengine Admanager Plus	Version 7.0 7050
Zohocorp Manageengine Admanager Plus	Version 7.0 7051
Zohocorp Manageengine Admanager Plus	Version 7.0 7052
Zohocorp Manageengine Admanager Plus	Version 7.0 7053
Zohocorp Manageengine Admanager Plus	Version 7.0 7054
Zohocorp Manageengine Admanager Plus	Version 7.0 7055
Zohocorp Manageengine Admanager Plus	Version 7.0 7056
Zohocorp Manageengine Admanager Plus	Version 7.0 7060
Zohocorp Manageengine Admanager Plus	Version 7.0 7061
Zohocorp Manageengine Admanager Plus	Version 7.0 7062
Zohocorp Manageengine Admanager Plus	Version 7.0 7063
Zohocorp Manageengine Admanager Plus	Version 7.0 7064
Zohocorp Manageengine Admanager Plus	Version 7.0 7065
Zohocorp Manageengine Admanager Plus	Version 7.0 7066
Zohocorp Manageengine Admanager Plus	Version 7.1
Zohocorp Manageengine Admanager Plus	Version 7.1 7100
Zohocorp Manageengine Admanager Plus	Version 7.1 7101
Zohocorp Manageengine Admanager Plus	Version 7.1 7102
Zohocorp Manageengine Admanager Plus	Version 7.1 7110
Zohocorp Manageengine Admanager Plus	Version 7.1 7111
Zohocorp Manageengine Admanager Plus	Version 7.1 7112
Zohocorp Manageengine Admanager Plus	Version 7.1 7113
Zohocorp Manageengine Admanager Plus	Version 7.1 7114
Zohocorp Manageengine Admanager Plus	Version 7.1 7115
Zohocorp Manageengine Admanager Plus	Version 7.1 7116
Zohocorp Manageengine Admanager Plus	Version 7.1 7117
Zohocorp Manageengine Admanager Plus	Version 7.1 7118
Zohocorp Manageengine Admanager Plus	Version 7.1 7120
Zohocorp Manageengine Admanager Plus	Version 7.1 7121
Zohocorp Manageengine Admanager Plus	Version 7.1 7122
Zohocorp Manageengine Admanager Plus	Version 7.1 7123
Zohocorp Manageengine Admanager Plus	Version 7.1 7124
Zohocorp Manageengine Admanager Plus	Version 7.1 7125
Zohocorp Manageengine Admanager Plus	Version 7.1 7126
Zohocorp Manageengine Admanager Plus	Version 7.1 7130
Zohocorp Manageengine Admanager Plus	Version 7.1 7131
Zohocorp Manageengine Admanager Plus	Version 7.1 7140
Zohocorp Manageengine Admanager Plus	Version 7.1 7141
Zohocorp Manageengine Admanager Plus	Version 7.1 7150
Zohocorp Manageengine Admanager Plus	Version 7.1 7151
Zohocorp Manageengine Admanager Plus	Version 7.1 7160
Zohocorp Manageengine Admanager Plus	Version 7.1 7161
Zohocorp Manageengine Admanager Plus	Version 7.1 7162
Zohocorp Manageengine Admanager Plus	Version 7.1 7163
Zohocorp Manageengine Admanager Plus	Version 7.1 7170
Zohocorp Manageengine Admanager Plus	Version 7.1 7171
Zohocorp Manageengine Admanager Plus	Version 7.1 7180
Zohocorp Manageengine Admanager Plus	Version 7.1 7181
Zohocorp Manageengine Admanager Plus	Version 7.1 7182
Zohocorp Manageengine Admanager Plus	Version 7.1 7183
Zohocorp Manageengine Admanager Plus	Version 7.1 7184
Zohocorp Manageengine Admanager Plus	Version 7.1 7185
Zohocorp Manageengine Admanager Plus	Version 7.1 7186
Zohocorp Manageengine Admanager Plus	Version 7.1 7188
Zohocorp Manageengine Admanager Plus	Version 7.2 7200
Zohocorp Manageengine Admanager Plus	Version 7.2 7201
Zohocorp Manageengine Admanager Plus	Version 7.2 7202
Zohocorp Manageengine Admanager Plus	Version 7.2 7203

Related CWEs

CWE-269

Improper Privilege Management

The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.

References (1)

https://www.manageengine.com/products/ad-manager/admanager-kb/cve-2024-24409.html

Source: 0fc0942c-577d-436f-ae8e-945763c79b02

Vendor Advisory

Timeline

No history available yet.