Lucene search
China National Vulnerability DatabaseCNVD-2022-55221HistoryApr 20, 2022 - 12:00 a.m.
ZOHO ManageEngine ADSelfService Plus Information Disclosure Vulnerability (CNVD-2022-55221)
2022-04-2000:00:00
China National Vulnerability Database
www.cnvd.org.cn
14
zoho manageengine
adselfservice plus
ntlm hash
disclosure
vulnerability
sensitive information
active directory
cloud applications
EPSS
0.014
Percentile
86.5%
An information disclosure exists in Zoho ManageEngine ADSelfService Plus, ZOHO’s integrated self-service password management and single sign-on solution for Active Directory and cloud applications. A vulnerability exists in Zoho ManageEngine ADSelfService Plus, which stems from the disclosure of NTLM hashes in certain storage path configuration steps. An attacker could exploit this vulnerability to obtain sensitive information.
Related
exploitdb
exploitdb
ManageEngine ADSelfService Plus Build 6118 - NTLMv2 Hash Exposure
2022-05-11 00:00:00
packetstorm
packetstorm
ManageEngine ADSelfService Plus Build 6118 NTLMv2 Hash Exposure
2022-05-11 00:00:00
zdt
zdt
ManageEngine ADSelfService Plus Build 6118 - NTLMv2 Hash Exposure Exploit
2022-05-12 00:00:00
nvd
nvd
CVE-2022-29457
2022-04-18 20:15:09
prion
prion
Design/Logic Flaw
2022-04-18 20:15:00
cvelist
cvelist
CVE-2022-29457
2022-04-18 19:47:07
cve
cve
CVE-2022-29457
2022-04-18 20:15:09