Arbitrary File Read Vulnerability in Zoho ManageEngine ADManager Plus

Arbitrary File Read Vulnerability in Zoho ManageEngine ADManager Plus

CVE-2023-39912 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N

Zoho ManageEngine ADManager Plus before 7203 allows Help Desk Technician users to read arbitrary files on the machine where this product is installed.

Learn more about our User Device Pen Test.