Описание
Zohocorp ManageEngine Analytics Plus versions below 6100 are vulnerable to authenticated sensitive data exposure which allows the users to retrieve sensitive tokens associated to the org-admin account.
Ссылки
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 6.1 (исключая)
cpe:2.3:a:zohocorp:manageengine_analytics_plus:*:*:*:*:*:*:*:*
EPSS
Процентиль: 63%
0.00438
Низкий
8.1 High
CVSS3
7.5 High
CVSS3
Дефекты
CWE-200
Связанные уязвимости
CVSS3: 8.1
github
около 1 года назад
Zohocorp ManageEngine Analytics Plus versions below 6100 are vulnerable to authenticated sensitive data exposure which allows the users to retrieve sensitive tokens associated to the org-admin account.
EPSS
Процентиль: 63%
0.00438
Низкий
8.1 High
CVSS3
7.5 High
CVSS3
Дефекты
CWE-200