3 matches found
CVE-2021-28958
Zoho ManageEngine ADSelfService Plus through 6101 is vulnerable to unauthenticated Remote Code Execution while changing the password...
CVE-2021-28958
Zoho ManageEngine ADSelfService Plus through 6101 is vulnerable to unauthenticated Remote Code Execution while changing the password...
CVE-2021-28958
CVE-2021-28958 affects Zoho ManageEngine ADSelfService Plus prior to build 6102 (6101 and earlier). It allows unauthenticated Remote Code Execution when changing the password, due to an issue in the REST API/authentication flow. CVSSv3.1 base score 9.8 (CRITICAL) with network access, no authentic...