ADManager Plus 2FA Bypass via REST AuthToken API
CVE-2023-41904 Published on September 27, 2023

Zoho ManageEngine ADManager Plus before 7203 allows 2FA bypass (for AuthToken generation) in REST APIs.

NVD

Products Associated with CVE-2023-41904

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2023-41904 are published in Zoho Corp Manageengine Admanager Plus:

Zoho Corp Manageengine Admanager Plus

Exploit Probability

EPSS

0.06%

Percentile

19.06%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

ADManager Plus 2FA Bypass via REST AuthToken APICVE-2023-41904 Published on September 27, 2023

Products Associated with CVE-2023-41904

Exploit Probability

ADManager Plus 2FA Bypass via REST AuthToken API
CVE-2023-41904 Published on September 27, 2023