CVE-2023-26600
First published: Mon Mar 06 2023(Updated: )
ManageEngine ServiceDesk Plus through 14104, ServiceDesk Plus MSP through 14000, Support Center Plus through 14000, and Asset Explorer through 6987 allow privilege escalation via query reports.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| ManageEngine AssetExplorer | <6.9 | |
| ManageEngine AssetExplorer | =6.9 | |
| ManageEngine AssetExplorer | =6.9-6900 | |
| ManageEngine AssetExplorer | =6.9-6901 | |
| ManageEngine AssetExplorer | =6.9-6902 | |
| ManageEngine AssetExplorer | =6.9-6903 | |
| ManageEngine AssetExplorer | =6.9-6904 | |
| ManageEngine AssetExplorer | =6.9-6905 | |
| ManageEngine AssetExplorer | =6.9-6906 | |
| ManageEngine AssetExplorer | =6.9-6907 | |
| ManageEngine AssetExplorer | =6.9-6908 | |
| ManageEngine AssetExplorer | =6.9-6909 | |
| ManageEngine AssetExplorer | =6.9-6950 | |
| ManageEngine AssetExplorer | =6.9-6951 | |
| ManageEngine AssetExplorer | =6.9-6952 | |
| ManageEngine AssetExplorer | =6.9-6953 | |
| ManageEngine AssetExplorer | =6.9-6954 | |
| ManageEngine AssetExplorer | =6.9-6955 | |
| ManageEngine AssetExplorer | =6.9-6956 | |
| ManageEngine AssetExplorer | =6.9-6957 | |
| ManageEngine AssetExplorer | =6.9-6970 | |
| ManageEngine AssetExplorer | =6.9-6971 | |
| ManageEngine AssetExplorer | =6.9-6972 | |
| ManageEngine AssetExplorer | =6.9-6973 | |
| ManageEngine AssetExplorer | =6.9-6974 | |
| ManageEngine AssetExplorer | =6.9-6975 | |
| ManageEngine AssetExplorer | =6.9-6976 | |
| ManageEngine AssetExplorer | =6.9-6977 | |
| ManageEngine AssetExplorer | =6.9-6978 | |
| ManageEngine AssetExplorer | =6.9-6979 | |
| ManageEngine AssetExplorer | =6.9-6980 | |
| ManageEngine AssetExplorer | =6.9-6981 | |
| ManageEngine AssetExplorer | =6.9-6982 | |
| ManageEngine AssetExplorer | =6.9-6983 | |
| ManageEngine AssetExplorer | =6.9-6984 | |
| ManageEngine AssetExplorer | =6.9-6985 | |
| ManageEngine AssetExplorer | =6.9-6986 | |
| ManageEngine AssetExplorer | =6.9-6987 | |
| Zoho ManageEngine ServiceDesk Plus | <14.1 | |
| Zoho ManageEngine ServiceDesk Plus | =14.1 | |
| Zoho ManageEngine ServiceDesk Plus | =14.1-14100 | |
| Zoho ManageEngine ServiceDesk Plus | =14.1-14101 | |
| Zoho ManageEngine ServiceDesk Plus | =14.1-14102 | |
| Zoho ManageEngine ServiceDesk Plus | =14.1-14103 | |
| Zoho ManageEngine ServiceDesk Plus MSP | <13.0 | |
| Zoho ManageEngine ServiceDesk Plus MSP | =13.0 | |
| Zoho ManageEngine ServiceDesk Plus MSP | =13.0-13000 | |
| Zoho ManageEngine ServiceDesk Plus MSP | =13.0-13001 | |
| Zoho ManageEngine ServiceDesk Plus MSP | =13.0-13002 | |
| Zoho ManageEngine ServiceDesk Plus MSP | =13.0-13003 | |
| Zoho ManageEngine ServiceDesk Plus MSP | =13.0-13004 | |
| ManageEngine SupportCenter Plus | <11.0 | |
| ManageEngine SupportCenter Plus | =11.0 | |
| ManageEngine SupportCenter Plus | =11.0-11000 | |
| ManageEngine SupportCenter Plus | =11.0-11001 | |
| ManageEngine SupportCenter Plus | =11.0-11002 | |
| ManageEngine SupportCenter Plus | =11.0-11003 | |
| ManageEngine SupportCenter Plus | =11.0-11004 | |
| ManageEngine SupportCenter Plus | =11.0-11005 | |
| ManageEngine SupportCenter Plus | =11.0-11006 | |
| ManageEngine SupportCenter Plus | =11.0-11007 | |
| ManageEngine SupportCenter Plus | =11.0-11008 | |
| ManageEngine SupportCenter Plus | =11.0-11009 | |
| ManageEngine SupportCenter Plus | =11.0-11010 | |
| ManageEngine SupportCenter Plus | =11.0-11011 | |
| ManageEngine SupportCenter Plus | =11.0-11012 | |
| ManageEngine SupportCenter Plus | =11.0-11013 | |
| ManageEngine SupportCenter Plus | =11.0-11014 | |
| ManageEngine SupportCenter Plus | =11.0-11015 | |
| ManageEngine SupportCenter Plus | =11.0-11016 | |
| ManageEngine SupportCenter Plus | =11.0-11017 | |
| ManageEngine SupportCenter Plus | =11.0-11018 | |
| ManageEngine SupportCenter Plus | =11.0-11019 | |
| ManageEngine SupportCenter Plus | =11.0-11020 | |
| ManageEngine SupportCenter Plus | =11.0-11021 | |
| ManageEngine SupportCenter Plus | =11.0-11022 | |
| ManageEngine SupportCenter Plus | =11.0-11024 | |
| ManageEngine SupportCenter Plus | =11.0-11025 | |
| ManageEngine SupportCenter Plus | =11.0-11026 | |
| ManageEngine SupportCenter Plus | =11.0-11027 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2023-26600?
CVE-2023-26600 is classified with a severity rating that indicates a high risk of privilege escalation in affected products.
How do I fix CVE-2023-26600?
To fix CVE-2023-26600, users should update their ManageEngine products to the latest patched versions as recommended by the vendor.
Which versions are affected by CVE-2023-26600?
CVE-2023-26600 affects ManageEngine ServiceDesk Plus, ServiceDesk Plus MSP, Support Center Plus, and Asset Explorer across specified versions.
What impact does CVE-2023-26600 have on users?
CVE-2023-26600 allows an attacker to escalate their privileges, potentially leading to unauthorized access and data manipulation.
Is CVE-2023-26600 publicly known?
Yes, CVE-2023-26600 has been publicly disclosed and detailed in various cybersecurity advisories.
- agent/type
- agent/references
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/author
- agent/last-modified-date
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/zohocorp
- canonical/manageengine assetexplorer
- version/manageengine assetexplorer/6.9
- version/manageengine assetexplorer/6.9-6900
- version/manageengine assetexplorer/6.9-6901
- version/manageengine assetexplorer/6.9-6902
- version/manageengine assetexplorer/6.9-6903
- version/manageengine assetexplorer/6.9-6904
- version/manageengine assetexplorer/6.9-6905
- version/manageengine assetexplorer/6.9-6906
- version/manageengine assetexplorer/6.9-6907
- version/manageengine assetexplorer/6.9-6908
- version/manageengine assetexplorer/6.9-6909
- version/manageengine assetexplorer/6.9-6950
- version/manageengine assetexplorer/6.9-6951
- version/manageengine assetexplorer/6.9-6952
- version/manageengine assetexplorer/6.9-6953
- version/manageengine assetexplorer/6.9-6954
- version/manageengine assetexplorer/6.9-6955
- version/manageengine assetexplorer/6.9-6956
- version/manageengine assetexplorer/6.9-6957
- version/manageengine assetexplorer/6.9-6970
- version/manageengine assetexplorer/6.9-6971
- version/manageengine assetexplorer/6.9-6972
- version/manageengine assetexplorer/6.9-6973
- version/manageengine assetexplorer/6.9-6974
- version/manageengine assetexplorer/6.9-6975
- version/manageengine assetexplorer/6.9-6976
- version/manageengine assetexplorer/6.9-6977
- version/manageengine assetexplorer/6.9-6978
- version/manageengine assetexplorer/6.9-6979
- version/manageengine assetexplorer/6.9-6980
- version/manageengine assetexplorer/6.9-6981
- version/manageengine assetexplorer/6.9-6982
- version/manageengine assetexplorer/6.9-6983
- version/manageengine assetexplorer/6.9-6984
- version/manageengine assetexplorer/6.9-6985
- version/manageengine assetexplorer/6.9-6986
- version/manageengine assetexplorer/6.9-6987
- canonical/zoho manageengine servicedesk plus
- version/zoho manageengine servicedesk plus/14.1
- version/zoho manageengine servicedesk plus/14.1-14100
- version/zoho manageengine servicedesk plus/14.1-14101
- version/zoho manageengine servicedesk plus/14.1-14102
- version/zoho manageengine servicedesk plus/14.1-14103
- canonical/zoho manageengine servicedesk plus msp
- version/zoho manageengine servicedesk plus msp/13.0
- version/zoho manageengine servicedesk plus msp/13.0-13000
- version/zoho manageengine servicedesk plus msp/13.0-13001
- version/zoho manageengine servicedesk plus msp/13.0-13002
- version/zoho manageengine servicedesk plus msp/13.0-13003
- version/zoho manageengine servicedesk plus msp/13.0-13004
- canonical/manageengine supportcenter plus
- version/manageengine supportcenter plus/11.0
- version/manageengine supportcenter plus/11.0-11000
- version/manageengine supportcenter plus/11.0-11001
- version/manageengine supportcenter plus/11.0-11002
- version/manageengine supportcenter plus/11.0-11003
- version/manageengine supportcenter plus/11.0-11004
- version/manageengine supportcenter plus/11.0-11005
- version/manageengine supportcenter plus/11.0-11006
- version/manageengine supportcenter plus/11.0-11007
- version/manageengine supportcenter plus/11.0-11008
- version/manageengine supportcenter plus/11.0-11009
- version/manageengine supportcenter plus/11.0-11010
- version/manageengine supportcenter plus/11.0-11011
- version/manageengine supportcenter plus/11.0-11012
- version/manageengine supportcenter plus/11.0-11013
- version/manageengine supportcenter plus/11.0-11014
- version/manageengine supportcenter plus/11.0-11015
- version/manageengine supportcenter plus/11.0-11016
- version/manageengine supportcenter plus/11.0-11017
- version/manageengine supportcenter plus/11.0-11018
- version/manageengine supportcenter plus/11.0-11019
- version/manageengine supportcenter plus/11.0-11020
- version/manageengine supportcenter plus/11.0-11021
- version/manageengine supportcenter plus/11.0-11022
- version/manageengine supportcenter plus/11.0-11024
- version/manageengine supportcenter plus/11.0-11025
- version/manageengine supportcenter plus/11.0-11026
- version/manageengine supportcenter plus/11.0-11027