Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An issue was discovered in Zoho ManageEngine Key Manager Plus before 6200. A service exposed by the application allows a user, with the level Operator, to access stored SSL certificates and associated key pairs during export.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
ZOHO ManageEngine Key Manager Plus 信息泄露漏洞
Vulnerability Description
ZOHO ManageEngine Key Manager Plus是卓豪(ZOHO)公司的一套基于WEB的SSH秘钥管理解决方案,它可以帮助您加固、控制、管理、监控及审计SSH秘钥,跨越秘钥的整个生命周期。它为管理员提供了可视化的SSH管理能力,帮助管理员有效控制秘钥文件的合理使用以及秘钥文件的合规性。 ZOHO ManageEngine Key Manager Plus 6200之前版本存在安全漏洞,该漏洞源于应用程序公开的服务允许具有Operator级别的用户在导出期间访问存储的SSL证书和相关的密
CVSS Information
N/A
Vulnerability Type
N/A