What is CVE-2014-6038?

CVE-2014-6038 is a vulnerability in N/a. Published 2020-01-13.

Is CVE-2014-6038 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in N/a

CVE-2014-6038

Zoho ManageEngine EventLog Analyzer versions 7 through 9.9 build 9002 have a database Information Disclosure Vulnerability. Fixed in EventLog Analyzer 10.0 Build 10000.

EPSS: 0.838 (99.3th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

Public proof-of-concept exploits

rapid7/metasploit-framework

References

packetstormsecurity.com/files/128996/ManageEngine-EventLog-Analyzer-SQL-Credent… (x_refsource_MISC)
www.securityfocus.com/bid/70959 (x_refsource_MISC)
exchange.xforce.ibmcloud.com/vulnerabilities/98540 (x_refsource_MISC)
seclists.org/fulldisclosure/2014/Nov/12 (x_refsource_MISC)

Frequently asked questions

What is CVE-2014-6038?: CVE-2014-6038 is a vulnerability in N/a. Published 2020-01-13.
Is CVE-2014-6038 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.