Manageengine pam360
This hub aggregates every CVE we track for Manageengine pam360, a product in the enterprise software space. Use it to gauge the current risk picture and drill into individual advisories.
8
CVEs tracked
4
Critical
2
High
1
In CISA KEV
Severity distribution
CRITICAL4HIGH2MEDIUM2
Monthly trend
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
1
0
0
0
0
0
0
2024-082026-07
Latest CVEs
The 8 most recently published vulnerabilities affecting Manageengine pam360.
- CVE-2025-11669Broken Access Control8.1
- CVE-2024-27313XSS Vulnerability6.3
- CVE-2024-27312Authorization vulnerability in PAM3608.1
- CVE-2023-6105ManageEngine Information Disclosure in Multiple Products5.5
- CVE-2022-40300Zoho ManageEngine Password Manager Pro through 12120 before 12121, PAM360 through 5550 before 5600, and Access Manager Plus through 4304 before 4305 have multiple SQL injection vulnerabilities.9.8
- CVE-2022-35405Zoho ManageEngine Password Manager Pro before 12101 and PAM360 before 5510 are vulnerable to unauthenticated remote code execution. (This also affects ManageEngine Access Manager Plus before 4303 w...KEV9.8
- CVE-2022-29081Zoho ManageEngine Access Manager Plus before 4302, Password Manager Pro before 12007, and PAM360 before 5401 are vulnerable to access-control bypass on a few Rest API URLs (for SSOutAction. SSLActi...9.8
- CVE-2021-44525Zoho ManageEngine PAM360 before build 5303 allows attackers to modify a few aspects of application state because of a filter bypass in which authentication is not required.9.8
Product normalization is registry-driven with AI assist and human review. How it works