Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Account Takeover
Vulnerability Description
Zohocorp's ManageEngine Analytics Plus and Zoho Analytics on-premise versions older than 6130 are vulnerable to an AD only account takeover because of a hardcoded sensitive token.
CVSS Information
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
Vulnerability Type
使用硬编码的凭证
Vulnerability Title
ZOHO ManageEngine Analytics Plus和ZOHO ManageEngine Analytics on-premise 安全漏洞
Vulnerability Description
ZOHO ManageEngine Analytics Plus和ZOHO ManageEngine Analytics on-premise都是美国卓豪(ZOHO)公司的产品。ZOHO ManageEngine Analytics Plus是一种自助式 IT 分析解决方案。可使用丰富的可视化和仪表板更好地查看您的 IT 数据。ZOHO ManageEngine Analytics on-premise是一款人工智能驱动的自助式 BI 和分析平台。用于连接、准备、分析和可视化数据,辅助决策。 ZOHO M
CVSS Information
N/A
Vulnerability Type
N/A