CVE-2023-26601 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	7.5 HIGH	NETWORK	LOW	NONE	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
mitre	CNA	---				---
CVE	ADP	---				---
CISA-ADP	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 90%

Vendor	Product	Version
zohocorp	manageengine_assetexplorer	𝑥 < 6.9
zohocorp	manageengine_assetexplorer	6.9
zohocorp	manageengine_assetexplorer	6.9:6900
zohocorp	manageengine_assetexplorer	6.9:6901
zohocorp	manageengine_assetexplorer	6.9:6902
zohocorp	manageengine_assetexplorer	6.9:6903
zohocorp	manageengine_assetexplorer	6.9:6904
zohocorp	manageengine_assetexplorer	6.9:6905
zohocorp	manageengine_assetexplorer	6.9:6906
zohocorp	manageengine_assetexplorer	6.9:6907
zohocorp	manageengine_assetexplorer	6.9:6908
zohocorp	manageengine_assetexplorer	6.9:6909
zohocorp	manageengine_assetexplorer	6.9:6950
zohocorp	manageengine_assetexplorer	6.9:6951
zohocorp	manageengine_assetexplorer	6.9:6952
zohocorp	manageengine_assetexplorer	6.9:6953
zohocorp	manageengine_assetexplorer	6.9:6954
zohocorp	manageengine_assetexplorer	6.9:6955
zohocorp	manageengine_assetexplorer	6.9:6956
zohocorp	manageengine_assetexplorer	6.9:6957
zohocorp	manageengine_assetexplorer	6.9:6970
zohocorp	manageengine_assetexplorer	6.9:6971
zohocorp	manageengine_assetexplorer	6.9:6972
zohocorp	manageengine_assetexplorer	6.9:6973
zohocorp	manageengine_assetexplorer	6.9:6974
zohocorp	manageengine_assetexplorer	6.9:6975
zohocorp	manageengine_assetexplorer	6.9:6976
zohocorp	manageengine_assetexplorer	6.9:6977
zohocorp	manageengine_assetexplorer	6.9:6978
zohocorp	manageengine_assetexplorer	6.9:6979
zohocorp	manageengine_assetexplorer	6.9:6980
zohocorp	manageengine_assetexplorer	6.9:6981
zohocorp	manageengine_assetexplorer	6.9:6982
zohocorp	manageengine_assetexplorer	6.9:6983
zohocorp	manageengine_assetexplorer	6.9:6984
zohocorp	manageengine_assetexplorer	6.9:6985
zohocorp	manageengine_assetexplorer	6.9:6986
zohocorp	manageengine_assetexplorer	6.9:6987
zohocorp	manageengine_servicedesk_plus	𝑥 < 14.1
zohocorp	manageengine_servicedesk_plus	14.1
zohocorp	manageengine_servicedesk_plus	14.1:14100
zohocorp	manageengine_servicedesk_plus	14.1:14101
zohocorp	manageengine_servicedesk_plus	14.1:14102
zohocorp	manageengine_servicedesk_plus	14.1:14103
zohocorp	manageengine_servicedesk_plus_msp	𝑥 < 14.0
zohocorp	manageengine_servicedesk_plus_msp	14.0:14000
zohocorp	manageengine_supportcenter_plus	𝑥 < 14.0
zohocorp	manageengine_supportcenter_plus	14.0:14000

𝑥

= Vulnerable software versions

Common Weakness Enumeration

CWE-400 - Uncontrolled Resource Consumption
The software does not properly control the allocation and maintenance of a limited resource, thereby enabling an actor to influence the amount of resources consumed, eventually leading to the exhaustion of available resources.

References

https://manageengine.com

https://www.manageengine.com/products/service-desk/CVE-2023-26601.html

https://manageengine.com

https://www.manageengine.com/products/service-desk/CVE-2023-26601.html