In ZOHO Password Manager Pro (PMP) 8.3.0 (Build 8303) and 8.4.0 (Build 8400,8401,8402), underprivileged users can obtain sensitive information (entry password history) via a vulnerable hidden service.
Software | From | Fixed in |
---|---|---|
zohocorp / manageengine_password_manager_pro | 8.3-build8303 | 8.3-build8303.x |
zohocorp / manageengine_password_manager_pro | 8.4-build8400 | 8.4-build8400.x |
zohocorp / manageengine_password_manager_pro | 8.4-build8401 | 8.4-build8401.x |
zohocorp / manageengine_password_manager_pro | 8.4-build8402 | 8.4-build8402.x |