{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-3324", "assignerOrgId": "0fc0942c-577d-436f-ae8e-945763c79b02", "state": "PUBLISHED", "assignerShortName": "Zohocorp", "dateReserved": "2026-02-27T11:27:10.762Z", "datePublished": "2026-04-16T14:30:55.130Z", "dateUpdated": "2026-04-16T15:21:19.911Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "0fc0942c-577d-436f-ae8e-945763c79b02", "shortName": "Zohocorp", "dateUpdated": "2026-04-16T14:30:55.130Z"}, "title": "Authentication Bypass", "problemTypes": [{"descriptions": [{"lang": "en", "cweId": "CWE-288", "description": "CWE-288 Authentication bypass using an alternate path or channel", "type": "CWE"}]}], "affected": [{"vendor": "Zohocorp", "product": "ManageEngine Log360", "versions": [{"status": "affected", "version": "13000", "lessThanOrEqual": "13013", "versionType": "13013"}], "defaultStatus": "unaffected"}], "cpeApplicability": [{"operator": "OR", "nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:a:zohocorp:manageengine_log360:*:*:*:*:*:*:*:*", "versionStartIncluding": "13000", "versionEndIncluding": "13013"}]}]}], "descriptions": [{"lang": "en", "value": "Zohocorp ManageEngine Log360 versions 13000 through 13013 are vulnerable to authentication bypass on certain actions due to improper filter configuration.", "supportingMedia": [{"type": "text/html", "base64": false, "value": "Zohocorp ManageEngine Log360 versions 13000 through 13013 are vulnerable to authentication bypass on certain actions due to improper filter configuration."}]}], "references": [{"url": "https://www.manageengine.com/log-management/advisory/CVE-2026-3324.html"}], "metrics": [{"format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}], "cvssV3_1": {"version": "3.1", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "LOW", "availabilityImpact": "NONE", "baseSeverity": "HIGH", "baseScore": 8.2, "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N"}}], "source": {"discovery": "UNKNOWN"}, "x_generator": {"engine": "Vulnogram 1.0.1"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-04-16T15:20:35.811371Z", "id": "CVE-2026-3324", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-04-16T15:21:19.911Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2026-3324", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2026-04-16T15:20:35.811371Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-04-16T15:21:08.790Z"}}], "cna": {"title": "Authentication Bypass", "source": {"discovery": "UNKNOWN"}, "metrics": [{"format": "CVSS", "cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 8.2, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N", "integrityImpact": "LOW", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"vendor": "Zohocorp", "product": "ManageEngine Log360", "versions": [{"status": "affected", "version": "13000", "versionType": "13013", "lessThanOrEqual": "13013"}], "defaultStatus": "unaffected"}], "references": [{"url": "https://www.manageengine.com/log-management/advisory/CVE-2026-3324.html"}], "x_generator": {"engine": "Vulnogram 1.0.1"}, "descriptions": [{"lang": "en", "value": "Zohocorp ManageEngine Log360 versions 13000 through 13013 are vulnerable to authentication bypass on certain actions due to improper filter configuration.", "supportingMedia": [{"type": "text/html", "value": "Zohocorp ManageEngine Log360 versions 13000 through 13013 are vulnerable to authentication bypass on certain actions due to improper filter configuration.", "base64": false}]}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-288", "description": "CWE-288 Authentication bypass using an alternate path or channel"}]}], "cpeApplicability": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:zohocorp:manageengine_log360:*:*:*:*:*:*:*:*", "vulnerable": true, "versionEndIncluding": "13013", "versionStartIncluding": "13000"}], "operator": "OR"}], "operator": "OR"}], "providerMetadata": {"orgId": "0fc0942c-577d-436f-ae8e-945763c79b02", "shortName": "Zohocorp", "dateUpdated": "2026-04-16T14:30:55.130Z"}}}, "cveMetadata": {"cveId": "CVE-2026-3324", "state": "PUBLISHED", "dateUpdated": "2026-04-16T15:21:19.911Z", "dateReserved": "2026-02-27T11:27:10.762Z", "assignerOrgId": "0fc0942c-577d-436f-ae8e-945763c79b02", "datePublished": "2026-04-16T14:30:55.130Z", "assignerShortName": "Zohocorp"}, "dataVersion": "5.2"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "Zohocorp ManageEngine Log360 versions 13000 through 13013 are vulnerable to authentication bypass on certain actions due to improper filter configuration."}], "id": "CVE-2026-3324", "lastModified": "2026-04-17T15:14:05.510", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 8.2, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 4.2, "source": "0fc0942c-577d-436f-ae8e-945763c79b02", "type": "Secondary"}]}, "published": "2026-04-16T15:17:38.010", "references": [{"source": "0fc0942c-577d-436f-ae8e-945763c79b02", "url": "https://www.manageengine.com/log-management/advisory/CVE-2026-3324.html"}], "sourceIdentifier": "0fc0942c-577d-436f-ae8e-945763c79b02", "vulnStatus": "Awaiting Analysis", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-288"}], "source": "0fc0942c-577d-436f-ae8e-945763c79b02", "type": "Secondary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "[13000,13013]"}}], "enrichment": {"confidence": 95.0, "confidence_source": "inferred", "scores": [{"score": 95.0, "source": "inferred"}, {"score": 100.0, "source": "matching"}]}, "original": {"product": "ManageEngine Log360", "source": "cna", "vendor": "Zohocorp"}, "product": "manageengine_log360", "vendor": "zohocorp"}], "analysis": {"en": {"generated_at": "2026-04-17T02:55:59.084398+00:00", "value": {"mitigation_remediation": ["Update ManageEngine Log360 to the latest version that addresses the authentication bypass vulnerability.", "If an immediate patch is not possible, restrict external network access to the Log360 management interface and enforce strong network segmentation.", "Enable two\u2011factor authentication and monitor for anomalous login attempts to detect potential bypass attempts."], "summary": {"action": "Immediate Patch", "impact": "Authentication Bypass"}, "threat_synthesis": {"affected_systems": "The affected product is Zohocorp ManageEngine Log360, specifically versions 13.0.0 to 13.0.13 inclusive. Users running any of these versions are vulnerable to the described authentication bypass.", "description_and_impact": "Zohocorp ManageEngine Log360 versions 13.0.0 through 13.0.13 allow an attacker to bypass authentication on certain privileged actions. The flaw arises from an improper filter configuration that can be exploited to gain unauthorized access, effectively allowing an attacker to log in without credentials. This violation of authentication integrity is categorized as CWE\u2011288, which directly compromises system security and confidentiality.", "risk_and_exploitability": "The vulnerability carries a CVSS score of 8.2, indicating high severity. EPSS data is currently unavailable, so while the exact likelihood of exploitation is unknown, the high CVSS score suggests a significant risk if exploited. The flaw is not yet listed in the CISA KEV catalog. The likely attack vector involves both remote exploitation over a network that can reach the Log360 instance and local attackers with network access, as the bypass operates through misconfigured system filters that can be triggered via HTTP requests to privileged actions."}}}}, "created": "2026-04-16T17:00:09.181732+00:00", "updated": "2026-04-17T03:00:08.462832+00:00", "vendors": ["zohocorp", "zohocorp$PRODUCT$manageengine_log360"]}