Security Advisory

CVE-2020-8422

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-01-31 15:25:11

Last updated 2025-05-30 16:01:31

Assigner mitre

State PUBLISHED

Description

An authorization issue was discovered in the Credential Manager feature in Zoho ManageEngine Remote Access Plus before 10.0.450. A user with the Guest role can extract the collection of all defined credentials of remote machines: the credential name, credential type, user name, domain/workgroup name, and description (but not the password).

← Browse all CVEs View on cve.org ↗