ManageEngine ADSelfService Plus before 6112 is vulnerable to domain user account takeover.
2021-09-21T13:15:07.937
2024-11-21T06:15:08.280
Modified
CVSSv3.1: 9.8 (CRITICAL)
AV:N/AC:L/Au:N/C:P/I:P/A:P
10.0
6.4
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Application | zohocorp | manageengine_admanager_plus | < 6.1 | Yes |
| Application | zohocorp | manageengine_admanager_plus | 6.1 | Yes |
| Application | zohocorp | manageengine_admanager_plus | 6.1 | Yes |
| Application | zohocorp | manageengine_admanager_plus | 6.1 | Yes |
| Application | zohocorp | manageengine_admanager_plus | 6.1 | Yes |
| Application | zohocorp | manageengine_admanager_plus | 6.1 | Yes |
| Application | zohocorp | manageengine_admanager_plus | 6.1 | Yes |
| Application | zohocorp | manageengine_admanager_plus | 6.1 | Yes |
| Application | zohocorp | manageengine_admanager_plus | 6.1 | Yes |
| Application | zohocorp | manageengine_admanager_plus | 6.1 | Yes |
| Application | zohocorp | manageengine_admanager_plus | 6.1 | Yes |
| Application | zohocorp | manageengine_admanager_plus | 6.1 | Yes |
| Application | zohocorp | manageengine_admanager_plus | 6.1 | Yes |
| Application | zohocorp | manageengine_admanager_plus | 6.1 | Yes |