CVE-2021-27214 is a vulnerability in Zoho Corp Manageengine Adselfservice Plus
Published on February 19, 2021

A Server-side request forgery (SSRF) vulnerability in the ProductConfig servlet in Zoho ManageEngine ADSelfService Plus through 6013 allows a remote unauthenticated attacker to perform blind HTTP requests or perform a Cross-site scripting (XSS) attack against the administrative interface via an HTTP request, a different vulnerability than CVE-2019-3905.

NVD

Products Associated with CVE-2021-27214

Want to know whenever a new CVE is published for Zoho Corp Manageengine Adselfservice Plus? stack.watch will email you.

Zoho Corp Manageengine Adselfservice Plus

Exploit Probability

EPSS

7.30%

Percentile

91.54%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2021-27214 is a vulnerability in Zoho Corp Manageengine Adselfservice PlusPublished on February 19, 2021

Products Associated with CVE-2021-27214

Exploit Probability

CVE-2021-27214 is a vulnerability in Zoho Corp Manageengine Adselfservice Plus
Published on February 19, 2021