GCVE - cpe:2.3:a:zohocorp:manageengine_applications_manager:14.7:build14740:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:zohocorp:manageengine_applications_manager:14.7:build14740:*:*:*:*:*:*

part: a version: 14.7 update: build14740

Vendor	Zohocorp (`4f1ab088-ab0e-54ac-b0dc-2304879a7502`)
Product	Manageengine Applications Manager (`49d485f6-953f-5232-b32c-ce1df3e28335`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2020-16267`	vulnerable	2026-06-03 14:41:47.686846	Details available Zoho ManageEngine Applications Manager version 14740 and prior allows an authenticated SQL Injection via a crafted jsp request in the RCA module. Published: 2020-10-06T19:02:42.000Z Updated: 2024-08-04T13:37:54.212Z Open on db.gcve.eu Reference links https://www.manageengine.com https://www.manageengine.com/products/applications_manager/issues.html#v14750 https://www.manageengine.com/products/applications_manager/security-updates/security-updates-cve-2020-16267.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2020-15927`	vulnerable	2026-06-03 14:41:46.999615	Details available Zoho ManageEngine Applications Manager version 14740 and prior allows an authenticated SQL Injection via a crafted jsp request in the SAP module. Published: 2020-10-06T18:56:15.000Z Updated: 2024-08-04T13:30:22.947Z Open on db.gcve.eu Reference links https://www.manageengine.com https://www.manageengine.com/products/applications_manager/issues.html#v14750 https://www.manageengine.com/products/applications_manager/security-updates/security-updates-cve-2020-15927.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2020-15533`	vulnerable	2026-06-03 14:41:46.007972	Details available In Zoho ManageEngine Application Manager 14.7 Build 14730 (before 14684, and between 14689 and 14750), the AlarmEscalation module is vulnerable to unauthenticated SQL Injection attack. Published: 2020-10-01T18:44:11.000Z Updated: 2024-08-04T13:22:29.178Z Open on db.gcve.eu Reference links https://www.manageengine.com https://www.manageengine.com/products/applications_manager/security-updates/security-updates-cve-2020-15533.html https://www.manageengine.com/products/applications_manager/issues.html#v14750	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2020-10816`	vulnerable	2026-06-03 14:41:00.598045	Details available Zoho ManageEngine Applications Manager 14780 and before allows a remote unauthenticated attacker to register managed servers via AAMRequestProcessor servlet. Published: 2020-10-08T16:50:02.000Z Updated: 2024-08-04T11:14:15.547Z Open on db.gcve.eu Reference links https://www.manageengine.com/au/products/applications_manager/security-updates/security-updates-cve-2020-10816.html https://gitlab.com/eLeN3Re/CVE-2020-10816	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.

Zoho Corp ManageEngine Applications Manager 14.7 Build14740

PURL mappings

Vulnerability references

Contribute