Zoho Corporation ManageEngine EventLog Analyzer 11.5
Approved changes feed: RSS · Atom
cpe:2.3:a:zohocorp:manageengine_eventlog_analyzer:11.5:*:*:*:*:*:*:*
part: a version: 11.5 update: *
| Vendor | Zohocorp (4f1ab088-ab0e-54ac-b0dc-2304879a7502) |
|---|---|
| Product | Manageengine Eventlog Analyzer (09cabc01-6902-56c4-9f3e-6260aff74ad2) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2017-11687 |
vulnerable | 2026-06-03 14:36:29.168086 |
Details available
Multiple Persistent cross-site scripting (XSS) vulnerabilities in Event log parsing and Display functions in Zoho ManageEngine Event Log Analyzer 11.4 and 11.5 allow remote attackers to inject arbitrary web script or HTML via syslog.
Published: 2017-07-27T06:00:00.000Z
Updated: 2024-08-05T18:19:37.660Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2017-11686 |
vulnerable | 2026-06-03 14:36:29.167763 |
Details available
Zoho ManageEngine Event Log Analyzer 11.4 and 11.5 allows remote attackers to obtain an authenticated user's password via XSS vulnerabilities or sniffing non-SSL traffic on the network, because the password is represented in a cookie with a reversible encoding method.
Published: 2017-07-27T06:00:00.000Z
Updated: 2024-08-05T18:19:38.695Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2017-11685 |
vulnerable | 2026-06-03 14:36:29.167355 |
Details available
Multiple Reflective cross-site scripting (XSS) vulnerabilities in search and display of event data in Zoho ManageEngine Event Log Analyzer 11.4 and 11.5 allow remote attackers to inject arbitrary web script or HTML, as demonstrated by the fName parameter.
Published: 2017-07-27T06:00:00.000Z
Updated: 2024-08-05T18:19:37.662Z Reference links |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.