Zohocorp - Manageengine Firewall Analyzer CVE

Filtered by vendor Zohocorp Subscribe

Filtered by product Manageengine Firewall Analyzer

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 2 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2019-11677	1 Zohocorp	1 Manageengine Firewall Analyzer	2019-05-03	7.5 HIGH	9.8 CRITICAL
The Custom Report import function in Zoho ManageEngine Firewall Analyzer before 12.3 Build 123224 is vulnerable to XML External Entity (XXE) Injection.
CVE-2019-11678	1 Zohocorp	1 Manageengine Firewall Analyzer	2019-05-03	7.5 HIGH	9.8 CRITICAL
The "default reports" feature in Zoho ManageEngine Firewall Analyzer before 12.3 Build 123218 is vulnerable to SQL Injection.

Vulnerabilities (CVE)