CVE-2022-42903
First published: Thu Nov 17 2022(Updated: )
Zoho ManageEngine SupportCenter Plus through 11024 allows low-privileged users to view the organization users list.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| ManageEngine SupportCenter Plus | =11.0 | |
| ManageEngine SupportCenter Plus | =11.0-11000 | |
| ManageEngine SupportCenter Plus | =11.0-11001 | |
| ManageEngine SupportCenter Plus | =11.0-11002 | |
| ManageEngine SupportCenter Plus | =11.0-11003 | |
| ManageEngine SupportCenter Plus | =11.0-11004 | |
| ManageEngine SupportCenter Plus | =11.0-11005 | |
| ManageEngine SupportCenter Plus | =11.0-11006 | |
| ManageEngine SupportCenter Plus | =11.0-11007 | |
| ManageEngine SupportCenter Plus | =11.0-11008 | |
| ManageEngine SupportCenter Plus | =11.0-11009 | |
| ManageEngine SupportCenter Plus | =11.0-11010 | |
| ManageEngine SupportCenter Plus | =11.0-11011 | |
| ManageEngine SupportCenter Plus | =11.0-11012 | |
| ManageEngine SupportCenter Plus | =11.0-11013 | |
| ManageEngine SupportCenter Plus | =11.0-11014 | |
| ManageEngine SupportCenter Plus | =11.0-11015 | |
| ManageEngine SupportCenter Plus | =11.0-11016 | |
| ManageEngine SupportCenter Plus | =11.0-11017 | |
| ManageEngine SupportCenter Plus | =11.0-11018 | |
| ManageEngine SupportCenter Plus | =11.0-11019 | |
| ManageEngine SupportCenter Plus | =11.0-11020 | |
| ManageEngine SupportCenter Plus | =11.0-11021 | |
| ManageEngine SupportCenter Plus | =11.0-11022 | |
| ManageEngine SupportCenter Plus | =11.0-11024 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the vulnerability ID for this issue?
The vulnerability ID for this issue is CVE-2022-42903.
What software is affected by this vulnerability?
Zoho ManageEngine SupportCenter Plus versions 11.0 to 11.0-11024 are affected by this vulnerability.
What is the severity of CVE-2022-42903?
The severity of CVE-2022-42903 is low with a CVSS score of 3.3.
How can low-privileged users exploit this vulnerability?
Low-privileged users can exploit this vulnerability to view the organization users list.
Is there a fix available for this vulnerability?
Yes, Zoho has provided a fix for this vulnerability. Please refer to the official Zoho ManageEngine SupportCenter Plus website for more information.
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/weakness
- agent/severity
- agent/references
- agent/last-modified-date
- agent/author
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/zohocorp
- canonical/manageengine supportcenter plus
- version/manageengine supportcenter plus/11.0
- version/manageengine supportcenter plus/11.0-11000
- version/manageengine supportcenter plus/11.0-11001
- version/manageengine supportcenter plus/11.0-11002
- version/manageengine supportcenter plus/11.0-11003
- version/manageengine supportcenter plus/11.0-11004
- version/manageengine supportcenter plus/11.0-11005
- version/manageengine supportcenter plus/11.0-11006
- version/manageengine supportcenter plus/11.0-11007
- version/manageengine supportcenter plus/11.0-11008
- version/manageengine supportcenter plus/11.0-11009
- version/manageengine supportcenter plus/11.0-11010
- version/manageengine supportcenter plus/11.0-11011
- version/manageengine supportcenter plus/11.0-11012
- version/manageengine supportcenter plus/11.0-11013
- version/manageengine supportcenter plus/11.0-11014
- version/manageengine supportcenter plus/11.0-11015
- version/manageengine supportcenter plus/11.0-11016
- version/manageengine supportcenter plus/11.0-11017
- version/manageengine supportcenter plus/11.0-11018
- version/manageengine supportcenter plus/11.0-11019
- version/manageengine supportcenter plus/11.0-11020
- version/manageengine supportcenter plus/11.0-11021
- version/manageengine supportcenter plus/11.0-11022
- version/manageengine supportcenter plus/11.0-11024