How severe is CVE-2018-20664?

The severity of CVE-2018-20664 is rated as critical with a CVSS score of 9.8.

Which software versions are affected by CVE-2018-20664?

Zoho ManageEngine ADSelfService Plus versions 5.7-4500 to 5.7-5700 are affected by CVE-2018-20664.

Where can I find more information about CVE-2018-20664 vulnerability?

You can find more information about CVE-2018-20664 vulnerability at excellium-services.com and manageengine.com.

Vulnerability/
CVE-2018-20664

critical

9.8

CWE

611

3/1/2019

5/8/2024

CVE-2018-20664: XEE

First published: Thu Jan 03 2019(Updated: )

Zoho ManageEngine ADSelfService Plus 5.x before build 5701 has XXE via an uploaded product license.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
ADSelfService Plus	=5.7-4500
ADSelfService Plus	=5.7-5032
ADSelfService Plus	=5.7-5040
ADSelfService Plus	=5.7-5041
ADSelfService Plus	=5.7-5100
ADSelfService Plus	=5.7-5101
ADSelfService Plus	=5.7-5102
ADSelfService Plus	=5.7-5103
ADSelfService Plus	=5.7-5104
ADSelfService Plus	=5.7-5105
ADSelfService Plus	=5.7-5106
ADSelfService Plus	=5.7-5107
ADSelfService Plus	=5.7-5108
ADSelfService Plus	=5.7-5109
ADSelfService Plus	=5.7-5110
ADSelfService Plus	=5.7-5111
ADSelfService Plus	=5.7-5112
ADSelfService Plus	=5.7-5113
ADSelfService Plus	=5.7-5114
ADSelfService Plus	=5.7-5115
ADSelfService Plus	=5.7-5116
ADSelfService Plus	=5.7-5200
ADSelfService Plus	=5.7-5201
ADSelfService Plus	=5.7-5202
ADSelfService Plus	=5.7-5203
ADSelfService Plus	=5.7-5204
ADSelfService Plus	=5.7-5205
ADSelfService Plus	=5.7-5206
ADSelfService Plus	=5.7-5207
ADSelfService Plus	=5.7-5300
ADSelfService Plus	=5.7-5301
ADSelfService Plus	=5.7-5302
ADSelfService Plus	=5.7-5303
ADSelfService Plus	=5.7-5304
ADSelfService Plus	=5.7-5305
ADSelfService Plus	=5.7-5306
ADSelfService Plus	=5.7-5307
ADSelfService Plus	=5.7-5308
ADSelfService Plus	=5.7-5309
ADSelfService Plus	=5.7-5310
ADSelfService Plus	=5.7-5311
ADSelfService Plus	=5.7-5312
ADSelfService Plus	=5.7-5313
ADSelfService Plus	=5.7-5314
ADSelfService Plus	=5.7-5315
ADSelfService Plus	=5.7-5316
ADSelfService Plus	=5.7-5317
ADSelfService Plus	=5.7-5318
ADSelfService Plus	=5.7-5319
ADSelfService Plus	=5.7-5320
ADSelfService Plus	=5.7-5321
ADSelfService Plus	=5.7-5322
ADSelfService Plus	=5.7-5323
ADSelfService Plus	=5.7-5324
ADSelfService Plus	=5.7-5325
ADSelfService Plus	=5.7-5326
ADSelfService Plus	=5.7-5327
ADSelfService Plus	=5.7-5328
ADSelfService Plus	=5.7-5329
ADSelfService Plus	=5.7-5330
ADSelfService Plus	=5.7-5400
ADSelfService Plus	=5.7-5500
ADSelfService Plus	=5.7-5501
ADSelfService Plus	=5.7-5502
ADSelfService Plus	=5.7-5503
ADSelfService Plus	=5.7-5504
ADSelfService Plus	=5.7-5505
ADSelfService Plus	=5.7-5506
ADSelfService Plus	=5.7-5507
ADSelfService Plus	=5.7-5508
ADSelfService Plus	=5.7-5509
ADSelfService Plus	=5.7-5510
ADSelfService Plus	=5.7-5511
ADSelfService Plus	=5.7-5512
ADSelfService Plus	=5.7-5513
ADSelfService Plus	=5.7-5514
ADSelfService Plus	=5.7-5515
ADSelfService Plus	=5.7-5516
ADSelfService Plus	=5.7-5517
ADSelfService Plus	=5.7-5518
ADSelfService Plus	=5.7-5519
ADSelfService Plus	=5.7-5520
ADSelfService Plus	=5.7-5521
ADSelfService Plus	=5.7-5600
ADSelfService Plus	=5.7-5601
ADSelfService Plus	=5.7-5602
ADSelfService Plus	=5.7-5603
ADSelfService Plus	=5.7-5604
ADSelfService Plus	=5.7-5605
ADSelfService Plus	=5.7-5606
ADSelfService Plus	=5.7-5607
ADSelfService Plus	=5.7-5700

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is CVE-2018-20664 vulnerability about?
Zoho ManageEngine ADSelfService Plus 5.x before build 5701 has XXE via an uploaded product license.
How severe is CVE-2018-20664?
The severity of CVE-2018-20664 is rated as critical with a CVSS score of 9.8.
Which software versions are affected by CVE-2018-20664?
Zoho ManageEngine ADSelfService Plus versions 5.7-4500 to 5.7-5700 are affected by CVE-2018-20664.
Where can I find more information about CVE-2018-20664 vulnerability?
You can find more information about CVE-2018-20664 vulnerability at excellium-services.com and manageengine.com.

agent/references
collector/mitre-cve
source/MITRE
agent/weakness
agent/severity
agent/last-modified-date
agent/author
agent/first-publish-date
agent/type
agent/description
agent/event
agent/source
agent/softwarecombine
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
vendor/zohocorp
canonical/adselfservice plus
version/adselfservice plus/5.7-4500
version/adselfservice plus/5.7-5032
version/adselfservice plus/5.7-5040
version/adselfservice plus/5.7-5041
version/adselfservice plus/5.7-5100
version/adselfservice plus/5.7-5101
version/adselfservice plus/5.7-5102
version/adselfservice plus/5.7-5103
version/adselfservice plus/5.7-5104
version/adselfservice plus/5.7-5105
version/adselfservice plus/5.7-5106
version/adselfservice plus/5.7-5107
version/adselfservice plus/5.7-5108
version/adselfservice plus/5.7-5109
version/adselfservice plus/5.7-5110
version/adselfservice plus/5.7-5111
version/adselfservice plus/5.7-5112
version/adselfservice plus/5.7-5113
version/adselfservice plus/5.7-5114
version/adselfservice plus/5.7-5115
version/adselfservice plus/5.7-5116
version/adselfservice plus/5.7-5200
version/adselfservice plus/5.7-5201
version/adselfservice plus/5.7-5202
version/adselfservice plus/5.7-5203
version/adselfservice plus/5.7-5204
version/adselfservice plus/5.7-5205
version/adselfservice plus/5.7-5206
version/adselfservice plus/5.7-5207
version/adselfservice plus/5.7-5300
version/adselfservice plus/5.7-5301
version/adselfservice plus/5.7-5302
version/adselfservice plus/5.7-5303
version/adselfservice plus/5.7-5304
version/adselfservice plus/5.7-5305
version/adselfservice plus/5.7-5306
version/adselfservice plus/5.7-5307
version/adselfservice plus/5.7-5308
version/adselfservice plus/5.7-5309
version/adselfservice plus/5.7-5310
version/adselfservice plus/5.7-5311
version/adselfservice plus/5.7-5312
version/adselfservice plus/5.7-5313
version/adselfservice plus/5.7-5314
version/adselfservice plus/5.7-5315
version/adselfservice plus/5.7-5316
version/adselfservice plus/5.7-5317
version/adselfservice plus/5.7-5318
version/adselfservice plus/5.7-5319
version/adselfservice plus/5.7-5320
version/adselfservice plus/5.7-5321
version/adselfservice plus/5.7-5322
version/adselfservice plus/5.7-5323
version/adselfservice plus/5.7-5324
version/adselfservice plus/5.7-5325
version/adselfservice plus/5.7-5326
version/adselfservice plus/5.7-5327
version/adselfservice plus/5.7-5328
version/adselfservice plus/5.7-5329
version/adselfservice plus/5.7-5330
version/adselfservice plus/5.7-5400
version/adselfservice plus/5.7-5500
version/adselfservice plus/5.7-5501
version/adselfservice plus/5.7-5502
version/adselfservice plus/5.7-5503
version/adselfservice plus/5.7-5504
version/adselfservice plus/5.7-5505
version/adselfservice plus/5.7-5506
version/adselfservice plus/5.7-5507
version/adselfservice plus/5.7-5508
version/adselfservice plus/5.7-5509
version/adselfservice plus/5.7-5510
version/adselfservice plus/5.7-5511
version/adselfservice plus/5.7-5512
version/adselfservice plus/5.7-5513
version/adselfservice plus/5.7-5514
version/adselfservice plus/5.7-5515
version/adselfservice plus/5.7-5516
version/adselfservice plus/5.7-5517
version/adselfservice plus/5.7-5518
version/adselfservice plus/5.7-5519
version/adselfservice plus/5.7-5520
version/adselfservice plus/5.7-5521
version/adselfservice plus/5.7-5600
version/adselfservice plus/5.7-5601
version/adselfservice plus/5.7-5602
version/adselfservice plus/5.7-5603
version/adselfservice plus/5.7-5604
version/adselfservice plus/5.7-5605
version/adselfservice plus/5.7-5606
version/adselfservice plus/5.7-5607
version/adselfservice plus/5.7-5700

CVE-2018-20664: XEE

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is CVE-2018-20664 vulnerability about?

How severe is CVE-2018-20664?

Which software versions are affected by CVE-2018-20664?

Where can I find more information about CVE-2018-20664 vulnerability?

Company

Resources

Contact