ZOHO ManageEngine ADManager Plus Code Execution Vulnerability

ZOHO ManageEngine ADManager Plus is a Microsoft Active Directory management software from ZOHO designed for enterprise users using Windows domains. The software assists AD administrators and help desk technicians with day-to-day administrative tasks, such as bulk management of user accounts and AD objects, assigning role-based access to help desk technicians, etc. A security vulnerability exists in ZOHO ManageEngine ADManager Plus due to improper design or implementation in the code development process of a network system or product. The vulnerability is caused by a design or implementation impropriety in the code development of a network system or product. An attacker could exploit this vulnerability to cause remote code execution.