CVE-2019-11361

2020-03-1916:48:23

mitre

www.cve.org

9.1 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

44.9%

JSON

Zoho ManageEngine Remote Access Plus 10.0.258 does not validate user permissions properly, allowing for privilege escalation and eventually a full application takeover.

References

www.manageengine.com/remote-desktop-management/knowledge-base/elevation-of-privilege.html