List of security vulnerabilities fixed in Zoho Analytics On-Premise

This page contains a list of all security vulnerabilities fixed in Zoho Analytics On-Premise along with their CVE ID and the fixed build number.

 
CVE ID/ZVE IDSynopsisSeverityAffected BuildsFixed in
CVE-2024-9100A Local File Inclusion (LFI) vulnerability has been discovered in Zoho Analytics On-Premise. This vulnerability enables an authenticated user to read arbitrary files from the server's file system through HSQLDB queries, potentially exposing sensitive information.MediumZoho Analytics On-Premise builds below 5410Build 5410
CVE-2024-52323A Sensitive Data Exposure vulnerability has been identified in Zoho Analytics On-Premise, allowing an authenticated user to retrieve sensitive tokens associated to the org-admin account. This could potentially lead to unintended privilege escalation.HighZoho Analytics On-Premise builds below 6100Build 6100