CVE-2020-8422 is a vulnerability in Zoho Corp Manageengine Remote Access Plus
Published on January 31, 2020

An authorization issue was discovered in the Credential Manager feature in Zoho ManageEngine Remote Access Plus before 10.0.450. A user with the Guest role can extract the collection of all defined credentials of remote machines: the credential name, credential type, user name, domain/workgroup name, and description (but not the password).

NVD

Products Associated with CVE-2020-8422

Want to know whenever a new CVE is published for Zoho Corp Manageengine Remote Access Plus? stack.watch will email you.

Zoho Corp Manageengine Remote Access Plus

Exploit Probability

EPSS

0.27%

Percentile

49.80%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2020-8422 is a vulnerability in Zoho Corp Manageengine Remote Access PlusPublished on January 31, 2020

Products Associated with CVE-2020-8422

Exploit Probability

CVE-2020-8422 is a vulnerability in Zoho Corp Manageengine Remote Access Plus
Published on January 31, 2020