Zohocorp

Operational audit scripts and mitigation intelligence for 67 known Zohocorp vulnerabilities.

CVSS 9.8

CVE-2025-8324

Target: ManageEngine Analytics Plus - Analytics Plus Service
CVSS 9.6

CVE-2025-3835

Target: ManageEngine Exchange Reporter Plus - Content Search module
CVSS 9.1

CVE-2025-11250

Target: ManageEngine ADSelfService Plus - Authentication Module
CVSS 8.8

CVE-2024-5471

Target: ManageEngine DDI Central - Agent
CVSS 8.8

CVE-2024-24409

Target: ManageEngine ADManager Plus - Modify Computers option
CVSS 8.8

CVE-2024-5466

Target: ManageEngine OpManager - Deploy Agent
CVSS 8.8

CVE-2025-9223

Target: ManageEngine Applications Manager - Execute Program Action Feature
CVSS 8.5

CVE-2025-10020

Target: ManageEngine ADManager Plus - Custom Script component
CVSS 8.5

CVE-2024-10839

Target: ManageEngine - SharePoint Manager Plus
CVSS 8.3

CVE-2024-5586

Target: ManageEngine - ADAudit Plus
CVSS 8.3

CVE-2024-36514

Target: ManageEngine - ADAudit Plus
CVSS 8.3

CVE-2024-36515

Target: ManageEngine - ADAudit Plus
CVSS 8.3

CVE-2024-36516

Target: ManageEngine - ADAudit Plus
CVSS 8.3

CVE-2024-36517

Target: ManageEngine - ADAudit Plus
CVSS 8.3

CVE-2024-5490

Target: ManageEngine - ADAudit Plus
CVSS 8.3

CVE-2024-5556

Target: ManageEngine - ADAudit Plus
CVSS 8.3

CVE-2024-38869

Target: ManageEngine Endpoint Central - Remote Office Deploy Configurations
CVSS 8.3

CVE-2024-5546

Target: ManageEngine - Password Manager Pro/ManageEngine PAM360
CVSS 8.3

CVE-2024-6204

Target: ManageEngine Exchange Reporter Plus - Reports Module
CVSS 8.3

CVE-2024-48878

Target: ManageEngine ADManager Plus - Archived Audit Report
CVSS 8.3

CVE-2024-5608

Target: ManageEngine ADAudit Plus - Technician Reports Feature
CVSS 8.3

CVE-2024-36485

Target: ManageEngine ADAudit Plus - Technician reports option
CVSS 8.3

CVE-2024-9459

Target: ManageEngine Exchange Reporter Plus - Reports Module
CVSS 8.3

CVE-2024-49574

Target: ManageEngine ADAudit Plus - Reports Module
CVSS 8.3

CVE-2024-5467

Target: ManageEngine - ADAudit Plus
CVSS 8.3

CVE-2024-38871

Target: ManageEngine Exchange Reporter Plus - Reports Module
CVSS 8.3

CVE-2024-38872

Target: ManageEngine Exchange Reporter Plus - Monitoring Module
CVSS 8.3

CVE-2024-6748

Target: ManageEngine - OpManager
CVSS 8.3

CVE-2024-36034

Target: ManageEngine ADAudit Plus - Aggregate Reports
CVSS 8.3

CVE-2024-36035

Target: ManageEngine ADAudit Plus - User Session Recording
CVSS 8.3

CVE-2024-36518

Target: ManageEngine ADAudit Plus - Attack Surface Analyzer's Dashboard
CVSS 8.3

CVE-2024-5487

Target: ManageEngine ADAudit Plus - Attack Surface Analyzer
CVSS 8.3

CVE-2024-5527

Target: ManageEngine ADAudit Plus - File Auditing Configuration
CVSS 8.3

CVE-2025-3836

Target: ManageEngine ADAudit Plus - Logon Events Aggregate Report
CVSS 8.3

CVE-2025-41403

Target: ManageEngine ADAudit Plus - Service Account Audit
CVSS 8.3

CVE-2025-36527

Target: ManageEngine - ADAudit Plus
CVSS 8.3

CVE-2025-41407

Target: ManageEngine ADAudit Plus - OU History report
CVSS 8.3

CVE-2025-27709

Target: ManageEngine ADAudit Plus - Service Account Auditing reports
CVSS 8.3

CVE-2025-36528

Target: ManageEngine ADAudit Plus - Service Account Auditing reports
CVSS 8.3

CVE-2025-41444

Target: ManageEngine ADAudit Plus - Alerts Module
CVSS 8.3

CVE-2025-9428

Target: ManageEngine Analytics Plus - Key Update API
CVSS 8.3

CVE-2026-1367

Target: ManageEngine ADSelfService Plus - Search Report Option
CVSS 8.1

CVE-2024-41140

Target: ManageEngine Applications Manager - Update User Function
CVSS 8.1

CVE-2025-8309

Target: ManageEngine - Asset Explorer, ServiceDesk Plus, ServiceDesk Plus MSP, SupportCenter Plus
CVSS 8.1

CVE-2025-3834

Target: ManageEngine - ADAudit Plus
CVSS 8.1

CVE-2024-27312

Target: ManageEngine - PAM360
CVSS 8.1

CVE-2025-11669

Target: ManageEngine PAM360 - Initiate Remote Session
CVSS 8.1

CVE-2025-1723

Target: ManageEngine ADSelfService Plus - Session Management
CVSS 8.1

CVE-2025-3833

Target: ManageEngine - ADSelfService Plus
CVSS 8.1

CVE-2024-52323

Target: ManageEngine Analytics Plus - Authenticated Sensitive Data Exposure Component
CVSS 8.1

CVE-2025-5366

Target: ManageEngine Exchange Reporter Plus - Folder-wise read mails with subject report
CVSS 8.1

CVE-2025-5966

Target: ManageEngine Exchange Reporter Plus - Attachments by filename keyword report
CVSS 7.6

CVE-2024-38868

Target: ManageEngine Endpoint Central - Device Isolation
CVSS 7.4

CVE-2025-1724

Target: ManageEngine Analytics Plus - On-Premise Version
CVSS 7.3

CVE-2026-27655

Target: ManageEngine Exchange Reporter Plus - Permissions Based on Mailboxes report
CVSS 7.3

CVE-2026-28703

Target: ManageEngine Exchange Reporter Plus - Mails Exchanged Between Users report
CVSS 7.3

CVE-2026-3880

Target: ManageEngine Exchange Reporter Plus - Public Folder Client Permissions report
CVSS 7.3

CVE-2025-7429

Target: ManageEngine Exchange Reporter Plus - Mails Deleted or Moved report
CVSS 7.3

CVE-2025-7430

Target: ManageEngine Exchange Reporter Plus - Folder Message Count and Size report
CVSS 7.3

CVE-2025-7632

Target: ManageEngine Exchange Reporter Plus - Public Folders report
CVSS 7.3

CVE-2025-7633

Target: ManageEngine Exchange Reporter Plus - Custom Report
CVSS 7.3

CVE-2026-4107

Target: ManageEngine Exchange Reporter Plus - Folder Message Count and Size report
CVSS 7.3

CVE-2026-4108

Target: ManageEngine Exchange Reporter Plus - Non-Owner Mailbox Permission report
CVSS 7.3

CVE-2026-28754

Target: ManageEngine Exchange Reporter Plus - Distribution Lists report
CVSS 7.3

CVE-2026-28756

Target: ManageEngine Exchange Reporter Plus - Permissions based on Distribution Groups report
CVSS 7.3

CVE-2026-3879

Target: ManageEngine Exchange Reporter Plus - Equipment Mailbox Details report
CVSS 7

CVE-2024-10203

Target: ManageEngine EndPoint Central - Agent