2 matches found
CVE-2021-40174
Zoho ManageEngine Log360 before Build 5224 allows a CSRF attack for disabling the logon security settings...
CVE-2021-40174
Zoho ManageEngine Log360 is affected by a CSRF vulnerability prior to Build 5224. The issue stems from insufficient validation of requests from trusted users, allowing an attacker to disable logon security settings. Reported CVSS scores indicate high impact (CVSS 3.1: base score 8.8, vector CVSS:...