Manageengine Access Manager Plus
by Zohocorp
Take action — actively targeted
Manageengine Access Manager Plus is actively targeted by attackers. A significant proportion of its known vulnerabilities are being exploited.
What to do
- Apply all available updates immediately
- Review your exposure — is this internet-facing?
- Monitor vendor advisories for this product
What Attackers Target
Vulnerabilities with high exploit probability
63.6%
Confirmed actively exploited (CISA)
18.2%
Public exploit code available
0.0%
Based on 11 known vulnerabilities. Percentages show the proportion that are actively dangerous — a low percentage means most vulnerabilities in this product are not being exploited.
Most Dangerous Vulnerabilities
| CVE | CVSS | Exploit Probability | Confirmed |
|---|---|---|---|
| CVE-2022-47966 | 9.8 | 94.4% | Yes |
| CVE-2022-35405 | 9.8 | 94.2% | Yes |
| CVE-2022-29081 | 9.8 | 79.6% | — |
| CVE-2022-43671 | 9.8 | 52.0% | — |
| CVE-2022-43672 | 9.8 | 45.6% | — |
| CVE-2022-47523 | 9.8 | 45.6% | — |
| CVE-2022-40300 | 9.8 | 38.2% | — |
| CVE-2021-44676 | 9.8 | 7.7% | — |
| CVE-2023-6105 | 5.5 | 0.1% | — |
| CVE-2023-2291 | 7.8 | 0.0% | — |
| CVE-2025-11669 | 8.1 | 0.0% | — |
58
/ 100
high-risk
Active Threat
50/50 · Critical
Exploit Availability
8/50 · Minimal
Score uses Wilson score intervals to account for sample size. Products with few CVEs are scored conservatively.