Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2024-52323

Zohocorp ManageEngine Analytics Plus versions below 6100 are vulnerable to authenticated sensitive data exposure which allows the users to retrieve sensitive tokens associated to the org-admin account.

Published

2024-11-27T10:15:05.030

Last Modified

2025-06-17T20:18:25.450

Status

Analyzed

Source

0fc0942c-577d-436f-ae8e-945763c79b02

Severity

CVSSv3.1: 8.1 (HIGH)

Weaknesses

Type: Secondary
CWE-200
Type: Secondary
CWE-276

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	zohocorp	manageengine_analytics_plus	< 6.1	Yes

References

https://www.manageengine.com/analytics-plus/CVE-2024-52323.html Vendor Advisory (0fc0942c-577d-436f-ae8e-945763c79b02)