CVE-2024-38868

Zohocorp ManageEngine Endpoint Central affected by Incorrect authorization vulnerability while isolating the devices.This issue affects Endpoint Central: before 11.3.2406.08 and before 11.3.2400.15

Published: Aug 30, 2024
Updated: May 4, 2025
CVE: CVE-2024-38868
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 8.3
AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H

CWEs:

CWE-863

Affected Software
References

Software	From	Fixed in
zohocorp / manageengine_endpoint_central	11.3.2401.05	11.3.2406.08
zohocorp / manageengine_endpoint_central	-	11.3.2400.15

https://www.manageengine.com/products/desktop-central/security-updates-ngav.html

Vulnerability Database

289,782

CVE-2024-38868