CVE-2023-6105 [Medium] | Information Disclosure in Manageengine Analytics Plus

An information disclosure vulnerability exists in multiple ManageEngine products that can result in encryption keys being exposed. A low-privileged OS user with access to the host where an affected ManageEngine product is installed can view and use the exposed key to decrypt product database passwords. This allows the user to access the ManageEngine product database.

EDB-ID	Source	Kind	Published	Link
—	nvd_ref	exploit_tag		Exploit-DB ↗

EDB-ID

Source

Kind

Published

Link

—

nvd_ref

exploit_tag

Exploit-DB ↗

#	Date	Old EPSS score	New EPSS score	Delta (New - Old)
1	2025-11-21	0.03%	0.08%	+0.05%
2	2025-11-18	0.05%	0.03%	-0.02%
3	2025-04-18	—	0.05%	—

Date

Old EPSS score

New EPSS score

Delta (New - Old)

2025-11-21

0.03%

0.08%

+0.05%

2025-11-18

0.05%

0.03%

-0.02%

2025-04-18

—

0.05%

—

Base score	Version	Severity	Vector	Exploitability	Impact	Score source
5.5	3.1	MEDIUM	`CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N` Click to expand Attack vector (AV:L) They already need access on the box, or another person has to do something wrong; it’s not a remote drive-by. Attack complexity (AC:L) Once they can reach the bug, pulling it off is straightforward—no weird race conditions or rare setup. Privileges required (PR:L) A normal user session is enough; they don’t have to be admin. User interaction (UI:N) Nobody has to click “OK” or open a trap file; it can work without a victim helping. Scope (S:U) Damage stays in the same “trust bubble” as the broken component—no big spill into unrelated systems. Confidentiality (C:H) Serious risk that confidential data gets exposed in a big way. Integrity (I:N) Data isn’t meaningfully altered or forged. Availability (A:N) Service keeps running; no real outage angle.	1.8	3.6	[email protected]
5.5	3.1	MEDIUM	`CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N` Click to expand Attack vector (AV:L) They already need access on the box, or another person has to do something wrong; it’s not a remote drive-by. Attack complexity (AC:L) Once they can reach the bug, pulling it off is straightforward—no weird race conditions or rare setup. Privileges required (PR:L) A normal user session is enough; they don’t have to be admin. User interaction (UI:N) Nobody has to click “OK” or open a trap file; it can work without a victim helping. Scope (S:U) Damage stays in the same “trust bubble” as the broken component—no big spill into unrelated systems. Confidentiality (C:H) Serious risk that confidential data gets exposed in a big way. Integrity (I:N) Data isn’t meaningfully altered or forged. Availability (A:N) Service keeps running; no real outage angle.	1.8	3.6	[email protected]

Base score

Version

Severity

Vector

Exploitability

Impact

Score source

5.5

3.1

MEDIUM

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Click to expand

Attack vector (AV:L): They already need access on the box, or another person has to do something wrong; it’s not a remote drive-by.
Attack complexity (AC:L): Once they can reach the bug, pulling it off is straightforward—no weird race conditions or rare setup.
Privileges required (PR:L): A normal user session is enough; they don’t have to be admin.
User interaction (UI:N): Nobody has to click “OK” or open a trap file; it can work without a victim helping.
Scope (S:U): Damage stays in the same “trust bubble” as the broken component—no big spill into unrelated systems.
Confidentiality (C:H): Serious risk that confidential data gets exposed in a big way.
Integrity (I:N): Data isn’t meaningfully altered or forged.
Availability (A:N): Service keeps running; no real outage angle.

1.8

3.6

[email protected]

5.5

3.1

MEDIUM

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Click to expand

Attack vector (AV:L): They already need access on the box, or another person has to do something wrong; it’s not a remote drive-by.
Attack complexity (AC:L): Once they can reach the bug, pulling it off is straightforward—no weird race conditions or rare setup.
Privileges required (PR:L): A normal user session is enough; they don’t have to be admin.
User interaction (UI:N): Nobody has to click “OK” or open a trap file; it can work without a victim helping.
Scope (S:U): Damage stays in the same “trust bubble” as the broken component—no big spill into unrelated systems.
Confidentiality (C:H): Serious risk that confidential data gets exposed in a big way.
Integrity (I:N): Data isn’t meaningfully altered or forged.
Availability (A:N): Service keeps running; no real outage angle.

1.8

3.6

[email protected]

Affected software / configurations for CVE-2023-6105

References for CVE-2023-6105

URL	Tags
https://www.manageengine.com/security/advisory/CVE/CVE-2023-6105.html
https://www.tenable.com/security/research/tra-2023-35	Exploit Third Party Advisory

URL

CVE-2023-6105 | ManageEngine Information Disclosure in Multiple Products

Public exploit references (Exploit-DB) for CVE-2023-6105

Exploit prediction scoring system (EPSS) score for CVE-2023-6105

Common vulnerability scoring system (CVSS) metrics for CVE-2023-6105

Weakness enumeration for CVE-2023-6105

Affected software / configurations for CVE-2023-6105

References for CVE-2023-6105

Vendor	Product	Version	Raw CPE
zohocorp	manageengine_analytics_plus	< 5.3	cpe:2.3:a:zohocorp:manageengine_analytics_plus::::::::
zohocorp	manageengine_appcreator	< 2.0.0	cpe:2.3:a:zohocorp:manageengine_appcreator::::::::
zohocorp	manageengine_application_control_plus	< 11.2.2328.01	cpe:2.3:a:zohocorp:manageengine_application_control_plus::::::::
zohocorp	manageengine_browser_security_plus	< 11.2.2328.01	cpe:2.3:a:zohocorp:manageengine_browser_security_plus::::::::
zohocorp	manageengine_device_control_plus	< 11.2.2328.01	cpe:2.3:a:zohocorp:manageengine_device_control_plus::::::::
zohocorp	manageengine_endpoint_central	< 11.2.2322.01	cpe:2.3:a:zohocorp:manageengine_endpoint_central::::::::
zohocorp	manageengine_endpoint_central_msp	< 11.2.2322.01	cpe:2.3:a:zohocorp:manageengine_endpoint_central_msp::::::::
zohocorp	manageengine_endpoint_dlp_plus	< 11.2.2328.01	cpe:2.3:a:zohocorp:manageengine_endpoint_dlp_plus::::::::
zohocorp	manageengine_mobile_device_manager_plus	< 10.1.2204.2	cpe:2.3:a:zohocorp:manageengine_mobile_device_manager_plus::::::::
zohocorp	manageengine_mobile_device_manager_plus	10.1.2207.4	cpe:2.3:a:zohocorp:manageengine_mobile_device_manager_plus:10.1.2207.4:::::::*
zohocorp	manageengine_os_deployer	< 1.2.2331.1	cpe:2.3:a:zohocorp:manageengine_os_deployer::::::::
zohocorp	manageengine_patch_manager_plus	< 11.2.2328.01	cpe:2.3:a:zohocorp:manageengine_patch_manager_plus::::::::
zohocorp	manageengine_remote_access_plus	< 11.2.2328.01	cpe:2.3:a:zohocorp:manageengine_remote_access_plus::::::::
zohocorp	manageengine_remote_monitoring_and_management	< 10.2.11	cpe:2.3:a:zohocorp:manageengine_remote_monitoring_and_management::::::::
zohocorp	manageengine_vulnerability_manager_plus	< 11.2.2328.01	cpe:2.3:a:zohocorp:manageengine_vulnerability_manager_plus::::::::
zohocorp	manageengine_adselfservice_plus	< 6.3	cpe:2.3:a:zohocorp:manageengine_adselfservice_plus::::::::
zohocorp	manageengine_adselfservice_plus	6.3	cpe:2.3:a:zohocorp:manageengine_adselfservice_plus:6.3:6300::::::
zohocorp	manageengine_adselfservice_plus	6.3	cpe:2.3:a:zohocorp:manageengine_adselfservice_plus:6.3:6301::::::
zohocorp	manageengine_adselfservice_plus	6.3	cpe:2.3:a:zohocorp:manageengine_adselfservice_plus:6.3:6302::::::
zohocorp	manageengine_adselfservice_plus	6.3	cpe:2.3:a:zohocorp:manageengine_adselfservice_plus:6.3:6303::::::
zohocorp	manageengine_admanager_plus	< 7.2	cpe:2.3:a:zohocorp:manageengine_admanager_plus::::::::
zohocorp	manageengine_admanager_plus	7.2	cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.2:7200::::::
zohocorp	manageengine_admanager_plus	7.2	cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.2:7201::::::
zohocorp	manageengine_admanager_plus	7.2	cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.2:7202::::::
zohocorp	manageengine_admanager_plus	7.2	cpe:2.3:a:zohocorp:manageengine_admanager_plus:7.2:7203::::::
zohocorp	manageengine_adaudit_plus	< 7.2	cpe:2.3:a:zohocorp:manageengine_adaudit_plus::::::::
zohocorp	manageengine_adaudit_plus	7.2	cpe:2.3:a:zohocorp:manageengine_adaudit_plus:7.2:7200::::::
zohocorp	manageengine_adaudit_plus	7.2	cpe:2.3:a:zohocorp:manageengine_adaudit_plus:7.2:7201::::::
zohocorp	manageengine_adaudit_plus	7.2	cpe:2.3:a:zohocorp:manageengine_adaudit_plus:7.2:7202::::::
zohocorp	manageengine_adaudit_plus	7.2	cpe:2.3:a:zohocorp:manageengine_adaudit_plus:7.2:7203::::::
zohocorp	manageengine_adaudit_plus	7.2	cpe:2.3:a:zohocorp:manageengine_adaudit_plus:7.2:7210::::::
zohocorp	manageengine_adaudit_plus	7.2	cpe:2.3:a:zohocorp:manageengine_adaudit_plus:7.2:7211::::::
zohocorp	manageengine_adaudit_plus	7.2	cpe:2.3:a:zohocorp:manageengine_adaudit_plus:7.2:7212::::::
zohocorp	manageengine_adaudit_plus	7.2	cpe:2.3:a:zohocorp:manageengine_adaudit_plus:7.2:7213::::::
zohocorp	manageengine_adaudit_plus	7.2	cpe:2.3:a:zohocorp:manageengine_adaudit_plus:7.2:7215::::::
zohocorp	manageengine_adaudit_plus	7.2	cpe:2.3:a:zohocorp:manageengine_adaudit_plus:7.2:7220::::::
zohocorp	manageengine_adaudit_plus	7.2	cpe:2.3:a:zohocorp:manageengine_adaudit_plus:7.2:7250::::::
zohocorp	manageengine_cloud_security_plus	< 4.1	cpe:2.3:a:zohocorp:manageengine_cloud_security_plus::::::::
zohocorp	manageengine_cloud_security_plus	4.1	cpe:2.3:a:zohocorp:manageengine_cloud_security_plus:4.1:4100::::::
zohocorp	manageengine_cloud_security_plus	4.1	cpe:2.3:a:zohocorp:manageengine_cloud_security_plus:4.1:4101::::::
zohocorp	manageengine_cloud_security_plus	4.1	cpe:2.3:a:zohocorp:manageengine_cloud_security_plus:4.1:4102::::::
zohocorp	manageengine_cloud_security_plus	4.1	cpe:2.3:a:zohocorp:manageengine_cloud_security_plus:4.1:4103::::::
zohocorp	manageengine_cloud_security_plus	4.1	cpe:2.3:a:zohocorp:manageengine_cloud_security_plus:4.1:4104::::::
zohocorp	manageengine_cloud_security_plus	4.1	cpe:2.3:a:zohocorp:manageengine_cloud_security_plus:4.1:4105::::::
zohocorp	manageengine_cloud_security_plus	4.1	cpe:2.3:a:zohocorp:manageengine_cloud_security_plus:4.1:4106::::::
zohocorp	manageengine_cloud_security_plus	4.1	cpe:2.3:a:zohocorp:manageengine_cloud_security_plus:4.1:4107::::::
zohocorp	manageengine_cloud_security_plus	4.1	cpe:2.3:a:zohocorp:manageengine_cloud_security_plus:4.1:4108::::::
zohocorp	manageengine_cloud_security_plus	4.1	cpe:2.3:a:zohocorp:manageengine_cloud_security_plus:4.1:4109::::::
zohocorp	manageengine_cloud_security_plus	4.1	cpe:2.3:a:zohocorp:manageengine_cloud_security_plus:4.1:4110::::::
zohocorp	manageengine_cloud_security_plus	4.1	cpe:2.3:a:zohocorp:manageengine_cloud_security_plus:4.1:4111::::::
zohocorp	manageengine_cloud_security_plus	4.1	cpe:2.3:a:zohocorp:manageengine_cloud_security_plus:4.1:4112::::::
zohocorp	manageengine_cloud_security_plus	4.1	cpe:2.3:a:zohocorp:manageengine_cloud_security_plus:4.1:4113::::::
zohocorp	manageengine_cloud_security_plus	4.1	cpe:2.3:a:zohocorp:manageengine_cloud_security_plus:4.1:4115::::::
zohocorp	manageengine_cloud_security_plus	4.1	cpe:2.3:a:zohocorp:manageengine_cloud_security_plus:4.1:4116::::::
zohocorp	manageengine_cloud_security_plus	4.1	cpe:2.3:a:zohocorp:manageengine_cloud_security_plus:4.1:4117::::::
zohocorp	manageengine_cloud_security_plus	4.1	cpe:2.3:a:zohocorp:manageengine_cloud_security_plus:4.1:4118::::::
zohocorp	manageengine_cloud_security_plus	4.1	cpe:2.3:a:zohocorp:manageengine_cloud_security_plus:4.1:4119::::::
zohocorp	manageengine_cloud_security_plus	4.1	cpe:2.3:a:zohocorp:manageengine_cloud_security_plus:4.1:4120::::::
zohocorp	manageengine_cloud_security_plus	4.1	cpe:2.3:a:zohocorp:manageengine_cloud_security_plus:4.1:4121::::::
zohocorp	manageengine_cloud_security_plus	4.1	cpe:2.3:a:zohocorp:manageengine_cloud_security_plus:4.1:4122::::::
zohocorp	manageengine_cloud_security_plus	4.1	cpe:2.3:a:zohocorp:manageengine_cloud_security_plus:4.1:4130::::::
zohocorp	manageengine_cloud_security_plus	4.1	cpe:2.3:a:zohocorp:manageengine_cloud_security_plus:4.1:4131::::::
zohocorp	manageengine_cloud_security_plus	4.1	cpe:2.3:a:zohocorp:manageengine_cloud_security_plus:4.1:4140::::::
zohocorp	manageengine_cloud_security_plus	4.1	cpe:2.3:a:zohocorp:manageengine_cloud_security_plus:4.1:4141::::::
zohocorp	manageengine_cloud_security_plus	4.1	cpe:2.3:a:zohocorp:manageengine_cloud_security_plus:4.1:4150::::::
zohocorp	manageengine_cloud_security_plus	4.1	cpe:2.3:a:zohocorp:manageengine_cloud_security_plus:4.1:4160::::::
zohocorp	manageengine_cloud_security_plus	4.1	cpe:2.3:a:zohocorp:manageengine_cloud_security_plus:4.1:4161::::::
zohocorp	manageengine_cloud_security_plus	4.1	cpe:2.3:a:zohocorp:manageengine_cloud_security_plus:4.1:4162::::::
zohocorp	manageengine_datasecurity_plus	< 6.1	cpe:2.3:a:zohocorp:manageengine_datasecurity_plus::::::::
zohocorp	manageengine_datasecurity_plus	6.1	cpe:2.3:a:zohocorp:manageengine_datasecurity_plus:6.1:6100::::::
zohocorp	manageengine_datasecurity_plus	6.1	cpe:2.3:a:zohocorp:manageengine_datasecurity_plus:6.1:6101::::::
zohocorp	manageengine_datasecurity_plus	6.1	cpe:2.3:a:zohocorp:manageengine_datasecurity_plus:6.1:6110::::::
zohocorp	manageengine_datasecurity_plus	6.1	cpe:2.3:a:zohocorp:manageengine_datasecurity_plus:6.1:6111::::::
zohocorp	manageengine_datasecurity_plus	6.1	cpe:2.3:a:zohocorp:manageengine_datasecurity_plus:6.1:6120::::::
zohocorp	manageengine_datasecurity_plus	6.1	cpe:2.3:a:zohocorp:manageengine_datasecurity_plus:6.1:6121::::::
zohocorp	manageengine_datasecurity_plus	6.1	cpe:2.3:a:zohocorp:manageengine_datasecurity_plus:6.1:6125::::::
zohocorp	manageengine_exchange_reporter_plus	< 5.7	cpe:2.3:a:zohocorp:manageengine_exchange_reporter_plus::::::::
zohocorp	manageengine_exchange_reporter_plus	5.7	cpe:2.3:a:zohocorp:manageengine_exchange_reporter_plus:5.7:5700::::::
zohocorp	manageengine_exchange_reporter_plus	5.7	cpe:2.3:a:zohocorp:manageengine_exchange_reporter_plus:5.7:5701::::::
zohocorp	manageengine_exchange_reporter_plus	5.7	cpe:2.3:a:zohocorp:manageengine_exchange_reporter_plus:5.7:5702::::::