EUVD-2026-31283

🗓️ 21 May 2026 12:36:17Reported by EUVDType

Authenticated remote code execution affects ADSelfService Plus before 6525, DataSecurity Plus before 6264, and RecoveryManager Plus before 6313.

Reporter	Title	Published	Views	Family All 9
ATTACKERKB	CVE-2026-2740	21 May 202612:36	–	attackerkb
CNNVD	ZOHO多款产品命令注入漏洞	21 May 202600:00	–	cnnvd
CVE	CVE-2026-2740	21 May 202612:36	–	cve
Cvelist	CVE-2026-2740 Remote Code Execution	21 May 202612:36	–	cvelist
Tenable Nessus	ManageEngine ADSelfService Plus < Build 6525 Authenticated RCE	31 May 202600:00	–	nessus
NVD	CVE-2026-2740	21 May 202614:16	–	nvd
Positive Technologies	PT-2026-42464	21 May 202600:00	–	ptsecurity
RedhatCVE	CVE-2026-2740	5 Jun 202619:15	–	redhatcve
Vulnrichment	CVE-2026-2740 Remote Code Execution	21 May 202612:36	–	vulnrichment

[
  {
    "enisaIdVendor": [
      {
        "id": "cabb21fe-7b6c-3ac2-b733-5934f3f4bd1e",
        "vendor": {
          "name": "Zohocorp"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "333168ef-3e65-35d5-be2f-78da54a4b0ec",
        "product": {
          "name": "ManageEngine ADSelfService Plus"
        },
        "product_version": "0 <6525"
      },
      {
        "id": "6f57de96-8d5f-333a-9200-42fecba78194",
        "product": {
          "name": "ManageEngine DataSecurity Plus"
        },
        "product_version": "0 <6264"
      },
      {
        "id": "a2b65914-e1ab-3397-bea4-4a1a0d2594d2",
        "product": {
          "name": "ManageEngine RecoveryManager Plus"
        },
        "product_version": "0 <6313"
      }
    ]
  }
]

Source	Link
manageengine	www.manageengine.com/products/self-service-password/advisory/CVE-2026-2740.html

21 May 2026 14:07Current

6.2Medium risk

Vulners AI Score6.2

CVSS 3.18.4

EPSS0.01702

SSVC