List of security vulnerabilities fixed in Analytics Plus

This page contains a list of all security vulnerabilities fixed in Analytics Plus along with their CVE ID and the fixed build number. To report vulnerabilities in ManageEngine products, head to ManageEngine's Security Response Center.

CVE ID/ZVE ID	Synopsis	Severity	Affected Builds	Fixed in
CVE-2024-9100	A Local File Inclusion (LFI) vulnerability has been discovered in Analytics Plus. This vulnerability enables an authenticated user to read arbitrary files from the server's file system through HSQLDB queries, potentially exposing sensitive information.	Medium	Analytics Plus On-Premise builds below 5410	Build 5410

List of security vulnerabilities fixed in Analytics Plus

Resources

Product

Support

Connect with us: