cve,link,title,description,vendor,products,score,severity,epss,cisa,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2024-5471,https://securityvulnerability.io/vulnerability/CVE-2024-5471,Agent Takeover Vulnerability in DDI Central Versions 4001 and Prior,"An agent takeover vulnerability exists in Zohocorp's ManageEngine DDI Central, affecting versions 4001 and prior. This vulnerability arises from the presence of hard-coded sensitive keys, which could potentially allow unauthorized access and control over the affected systems. By exploiting this weakness, attackers could manipulate network configurations or access sensitive information, putting organizations at risk. It is crucial for users of ManageEngine DDI Central to review their current versions and implement necessary security measures to mitigate this risk.",Manageengine,Ddi Central,9.8,CRITICAL,0.0340300016105175,false,false,false,false,,false,false,2024-07-17T10:56:53.675Z,0
CVE-2024-27311,https://securityvulnerability.io/vulnerability/CVE-2024-27311,Vulnerability in DDI Central Could Allow Directory Traversal,"A directory traversal vulnerability exists in ManageEngine DDI Central versions 4001 and earlier, allowing attackers to manipulate file paths and upload arbitrary files to the server's file system. This can lead to unauthorized access and potential compromise of sensitive data. Implementing appropriate input validation and restricting file upload capabilities are essential measures to mitigate this risk.",Manageengine,Ddi Central,8.8,HIGH,0.001500000013038516,false,false,false,false,,false,false,2024-07-17T10:52:45.823Z,0