Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An authorization issue was discovered in the Credential Manager feature in Zoho ManageEngine Remote Access Plus before 10.0.450. A user with the Guest role can extract the collection of all defined credentials of remote machines: the credential name, credential type, user name, domain/workgroup name, and description (but not the password).
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Zoho ManageEngine Remote Access Plus 安全漏洞
Vulnerability Description
Zoho ManageEngine Remote Access Plus 10.0.450之前版本中的Credential Manager功能存在安全漏洞。攻击者可利用该漏洞提取远程设备所定义的凭证(包括:凭证名称,凭证类型,用户名,域名/工作组名和描述)。
CVSS Information
N/A
Vulnerability Type
N/A