{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-23T02:27:06.917","vulnerabilities":[{"cve":{"id":"CVE-2024-6204","sourceIdentifier":"0fc0942c-577d-436f-ae8e-945763c79b02","published":"2024-08-30T17:15:15.610","lastModified":"2026-06-17T08:17:30.367","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Zohocorp ManageEngine Exchange Reporter Plus versions before 5715 are vulnerable to SQL Injection in the reports module."},{"lang":"es","value":"Las versiones de Zohocorp ManageEngine Exchange Reporter Plus anteriores a 5715 son vulnerables a la inyección SQL en el módulo de informes."}],"affected":[{"source":"0fc0942c-577d-436f-ae8e-945763c79b02","affectedData":[{"vendor":"ManageEngine","product":"Exchange Reporter Plus","defaultStatus":"unaffected","collectionURL":"https://www.manageengine.com/?pos=ExchangeReporter","versions":[{"version":"0","lessThan":"5715","versionType":"5715","status":"affected"}]}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","affectedData":[{"vendor":"zohocorp","product":"manageengine_exchange_reporter_plus","defaultStatus":"unknown","cpes":["cpe:2.3:a:zohocorp:manageengine_exchange_reporter_plus:*:*:*:*:*:*:*:*"],"versions":[{"version":"0","lessThan":"5715","versionType":"custom","status":"affected"}]}]}],"metrics":{"cvssMetricV31":[{"source":"0fc0942c-577d-436f-ae8e-945763c79b02","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L","baseScore":8.3,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"LOW"},"exploitabilityScore":2.8,"impactScore":5.5},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N","baseScore":8.1,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":5.2}],"ssvcV203":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","ssvcData":{"timestamp":"2024-08-30T18:01:16.855480Z","id":"CVE-2024-6204","options":[{"exploitation":"none"},{"automatable":"no"},{"technicalImpact":"total"}],"role":"CISA Coordinator","version":"2.0.3"}}]},"weaknesses":[{"source":"0fc0942c-577d-436f-ae8e-945763c79b02","type":"Secondary","description":[{"lang":"en","value":"CWE-89"}]},{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-89"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:zohocorp:manageengine_exchange_reporter_plus:*:*:*:*:*:*:*:*","versionEndExcluding":"5.7","matchCriteriaId":"3DA0580F-8167-450E-A1E9-0F1F7FC7E2C9"},{"vulnerable":true,"criteria":"cpe:2.3:a:zohocorp:manageengine_exchange_reporter_plus:5.7:-:*:*:*:*:*:*","matchCriteriaId":"3FC399C6-4299-4744-9FC5-13CFE7478164"},{"vulnerable":true,"criteria":"cpe:2.3:a:zohocorp:manageengine_exchange_reporter_plus:5.7:5700:*:*:*:*:*:*","matchCriteriaId":"E913F3D6-9F94-4130-94FF-37F4D81BAEF4"},{"vulnerable":true,"criteria":"cpe:2.3:a:zohocorp:manageengine_exchange_reporter_plus:5.7:5701:*:*:*:*:*:*","matchCriteriaId":"34D23B58-2BB8-40EE-952C-1595988335CC"},{"vulnerable":true,"criteria":"cpe:2.3:a:zohocorp:manageengine_exchange_reporter_plus:5.7:5702:*:*:*:*:*:*","matchCriteriaId":"322920C4-4487-4E44-9C40-2959F478A4FA"},{"vulnerable":true,"criteria":"cpe:2.3:a:zohocorp:manageengine_exchange_reporter_plus:5.7:5703:*:*:*:*:*:*","matchCriteriaId":"3AD735B9-2CE2-46BA-9A14-A22E3FE21C6D"},{"vulnerable":true,"criteria":"cpe:2.3:a:zohocorp:manageengine_exchange_reporter_plus:5.7:5704:*:*:*:*:*:*","matchCriteriaId":"014DB85C-DB28-4EBB-971A-6F8F964CE6FE"},{"vulnerable":true,"criteria":"cpe:2.3:a:zohocorp:manageengine_exchange_reporter_plus:5.7:5705:*:*:*:*:*:*","matchCriteriaId":"5E9B0013-ABF8-4616-BC92-15DF9F5CB359"},{"vulnerable":true,"criteria":"cpe:2.3:a:zohocorp:manageengine_exchange_reporter_plus:5.7:5706:*:*:*:*:*:*","matchCriteriaId":"5B744F32-FD43-47B8-875C-6777177677CD"},{"vulnerable":true,"criteria":"cpe:2.3:a:zohocorp:manageengine_exchange_reporter_plus:5.7:5707:*:*:*:*:*:*","matchCriteriaId":"F1BB6EEA-2BAA-4C48-8DA8-1E87B3DE611F"},{"vulnerable":true,"criteria":"cpe:2.3:a:zohocorp:manageengine_exchange_reporter_plus:5.7:5708:*:*:*:*:*:*","matchCriteriaId":"D3012C17-87F5-4FFD-B67B-BEFF2A390613"},{"vulnerable":true,"criteria":"cpe:2.3:a:zohocorp:manageengine_exchange_reporter_plus:5.7:5709:*:*:*:*:*:*","matchCriteriaId":"1E33D368-2D81-4C7E-9405-7C0A86E97217"},{"vulnerable":true,"criteria":"cpe:2.3:a:zohocorp:manageengine_exchange_reporter_plus:5.7:5710:*:*:*:*:*:*","matchCriteriaId":"7AA9384F-6401-4495-B558-23E5A7A7528C"},{"vulnerable":true,"criteria":"cpe:2.3:a:zohocorp:manageengine_exchange_reporter_plus:5.7:5711:*:*:*:*:*:*","matchCriteriaId":"E492F955-0734-4AE4-A59F-572ADF0CFE75"},{"vulnerable":true,"criteria":"cpe:2.3:a:zohocorp:manageengine_exchange_reporter_plus:5.7:5712:*:*:*:*:*:*","matchCriteriaId":"11B71FFC-FD2E-4F84-BB1E-55BCA5B51099"},{"vulnerable":true,"criteria":"cpe:2.3:a:zohocorp:manageengine_exchange_reporter_plus:5.7:5713:*:*:*:*:*:*","matchCriteriaId":"531AFEFB-BBE6-42B2-8D37-B4098324AA87"},{"vulnerable":true,"criteria":"cpe:2.3:a:zohocorp:manageengine_exchange_reporter_plus:5.7:5714:*:*:*:*:*:*","matchCriteriaId":"01F80C71-110D-4776-B13F-08FCDE125B81"}]}]}],"references":[{"url":"https://www.manageengine.com/products/exchange-reports/advisory/CVE-2024-6204.html","source":"0fc0942c-577d-436f-ae8e-945763c79b02","tags":["Vendor Advisory"]}]}}]}