5 matches found
ManageEngine SupportCenter Plus < 11.0 Build 11023
The version of ManageEngine SupportCenter Plus installed on the remote host is prior to 11.0 Build 11023, 11.0 Build 11023, 11.0 Build 11023. It is, therefore, affected by a vulnerability as referenced in the support- centercve-2022-36412 advisory. - In Zoho ManageEngine SupportCenter Plus before...
CVE-2022-36412
In Zoho ManageEngine SupportCenter Plus before 11023, V3 API requests are vulnerable to authentication bypass. An API request may, in effect, be executed with the credentials of a user who authenticated in the past...
CVE-2022-36412
In Zoho ManageEngine SupportCenter Plus before 11023, V3 API requests are vulnerable to authentication bypass. An API request may, in effect, be executed with the credentials of a user who authenticated in the past...
CVE-2022-36412
In Zoho ManageEngine SupportCenter Plus before 11023, V3 API requests are vulnerable to authentication bypass. An API request may, in effect, be executed with the credentials of a user who authenticated in the past...
CVE-2022-36412
Zoho ManageEngine SupportCenter Plus prior to version 11023 is affected by an authentication bypass in V3 API requests. The root cause is described as insufficient clearance of credentials for a previously authenticated user, allowing an API request to execute with past user credentials. Remediat...