3 matches found
CVE-2021-37414
Zoho ManageEngine DesktopCentral before 10.0.709 allows anyone to get a valid user's APIKEY without authentication...
CVE-2021-37414
creationtimestamp| type| source ---|---|--- 2021-09-10 18:31:20+00:00| seen| https://t.me/cibsecurity/28677...
CVE-2021-37414
CVE-2021-37414 affects Zoho ManageEngine DesktopCentral prior to 10.0.709. The issue is an authorization flaw that allows retrieving a valid user’s APIKEY without authentication, per NVD/Red Hat.cnvd entries and vendor pages. Impact is authenticated user credential exposure; no explicit exploitat...