CVE-2024-5546
Last modified
CVE-2024-5546 is a high-severity vulnerability rated 8.8/10 on the CVSS scale. Zohocorp ManageEngine Password Manager Pro versions before 12431 and ManageEngine PAM360 versions before 7001 are affected by authenticated SQL Injection vulnerability via a global search option.. EPSS estimates a 3.04% chance of exploitation in the next 30 days.
Description
Zohocorp ManageEngine Password Manager Pro versions before 12431 and ManageEngine PAM360 versions before 7001 are affected by authenticated SQL Injection vulnerability via a global search option.
Metrics
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Weakness Enumeration
Affected Software
| Vendor | Product | Versions | Update |
|---|---|---|---|
| Zohocorp | Manageengine Pam360 | 4.0 | — |
| Zohocorp | Manageengine Pam360 | 4.1 | — |
| Zohocorp | Manageengine Pam360 | 4.5 | — |
| Zohocorp | Manageengine Pam360 | 5.0 | — |
| Zohocorp | Manageengine Pam360 | 5.1 | — |
| Zohocorp | Manageengine Pam360 | 5.2 | — |
| Zohocorp | Manageengine Pam360 | 5.3 | — |
| Zohocorp | Manageengine Pam360 | 5.4 | Build5400 |
| Zohocorp | Manageengine Pam360 | 5.5 | Build5500 |
| Zohocorp | Manageengine Pam360 | 5.7 | Build5700 |
| Zohocorp | Manageengine Pam360 | 5.8 | Build5800 |
| Zohocorp | Manageengine Pam360 | 5.9 | Build5900 |
| Zohocorp | Manageengine Pam360 | 6.0 | Build6000 |
| Zohocorp | Manageengine Pam360 | 6.1 | Build6100 |
| Zohocorp | Manageengine Pam360 | 6.2 | Build6200 |
| Zohocorp | Manageengine Pam360 | 6.3 | Build6300 |
| Zohocorp | Manageengine Pam360 | 6.4 | Build6400 |
| Zohocorp | Manageengine Pam360 | 6.5 | Build6500 |
| Zohocorp | Manageengine Pam360 | 6.6 | Build6600 |
| Zohocorp | Manageengine Pam360 | 6.7 | Build6700 |
| Zohocorp | Manageengine Pam360 | 7.0 | Build7000 |
| Zohocorp | Manageengine Password Manager Pro | 6.0 | Build6002 |
| Zohocorp | Manageengine Password Manager Pro | 6.1 | Build6104 |
| Zohocorp | Manageengine Password Manager Pro | 6.2 | Build6201 |
| Zohocorp | Manageengine Password Manager Pro | 6.4 | Build6401 |
| Zohocorp | Manageengine Password Manager Pro | 6.5 | Build6503 |
| Zohocorp | Manageengine Password Manager Pro | 6.6 | Build6600 |
| Zohocorp | Manageengine Password Manager Pro | 6.7 | Build6700 |
| Zohocorp | Manageengine Password Manager Pro | 6.8 | Build6800 |
| Zohocorp | Manageengine Password Manager Pro | 6.9 | Build6900 |
| Zohocorp | Manageengine Password Manager Pro | 7.0 | Build7000 |
| Zohocorp | Manageengine Password Manager Pro | 7.1 | Build7100 |
| Zohocorp | Manageengine Password Manager Pro | 7.5 | Build7500 |
| Zohocorp | Manageengine Password Manager Pro | 7.6 | Build7600 |
| Zohocorp | Manageengine Password Manager Pro | 8.0 | Build8000 |
| Zohocorp | Manageengine Password Manager Pro | 8.1 | Build8100 |
| Zohocorp | Manageengine Password Manager Pro | 8.2 | Build8200 |
| Zohocorp | Manageengine Password Manager Pro | 8.3 | Build8300 |
| Zohocorp | Manageengine Password Manager Pro | 8.4 | Build8041 |
| Zohocorp | Manageengine Password Manager Pro | 8.5 | Build8500 |
| Zohocorp | Manageengine Password Manager Pro | 8.6 | Build8600 |
| Zohocorp | Manageengine Password Manager Pro | 8.7 | Build8700 |
| Zohocorp | Manageengine Password Manager Pro | 9.0 | Build9000 |
| Zohocorp | Manageengine Password Manager Pro | 9.1 | Build9100 |
| Zohocorp | Manageengine Password Manager Pro | 9.2 | Build9200 |
| Zohocorp | Manageengine Password Manager Pro | 9.3 | Build9300 |
| Zohocorp | Manageengine Password Manager Pro | 9.4 | Build9400 |
| Zohocorp | Manageengine Password Manager Pro | 9.5 | Build9500 |
| Zohocorp | Manageengine Password Manager Pro | 9.6 | Build9600 |
| Zohocorp | Manageengine Password Manager Pro | 9.7 | Build9700 |
Showing 50 of 67 affected configurations. See NVD for the full list.
References
Timeline
- Published
- Last Modified
- Status
- Analyzed
Frequently Asked Questions
What is CVE-2024-5546?
How severe is CVE-2024-5546?
How do I fix CVE-2024-5546?
Are you affected by CVE-2024-5546?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST