February 17, 2025
Proactive Defense: The Importance of Incident Response Planning in Cybersecurity
Multiple D-Link Products Vulnerabilities
November 7, 2024An Emerging Ducktail Infostealer – Active IOCs
November 8, 2024Multiple D-Link Products Vulnerabilities
November 7, 2024An Emerging Ducktail Infostealer – Active IOCs
November 8, 2024
Severity
High
Analysis Summary
CVE-2024-9459
Zohocorp ManageEngine Exchange Reporter Plus versions 5718 and prior are vulnerable to authenticated SQL Injection in reports module.
Impact
- Data Manipulation
Indicators of Compromise
CVE
- CVE-2024-9459
Affected Vendors
Zoho
Affected Products
- Zoho ManageEngine Exchange Reporter Plus
Remediation
Refer to Zoho ManageEngine Security Advisory for patch, upgrade, or suggested workaround information.