Show filters
3 Total Results
Displaying 1-3 of 3
Sort by:
Attacker Value
Very High

CVE-2021-40539

Disclosure Date: September 07, 2021 (last updated November 28, 2024)
Zoho ManageEngine ADSelfService Plus version 6113 and prior is vulnerable to REST API authentication bypass with resultant remote code execution.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
5
2
Attacker Value
Unknown

CVE-2023-28342

Disclosure Date: April 05, 2023 (last updated October 08, 2023)
Zoho ManageEngine ADSelfService Plus before 6218 allows anyone to conduct a Denial-of-Service attack via the Mobile App Authentication API.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2021-28958

Disclosure Date: June 25, 2021 (last updated November 28, 2024)
Zoho ManageEngine ADSelfService Plus through 6101 is vulnerable to unauthenticated Remote Code Execution while changing the password.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0