CVE-2020-11518 | SynScan

Vulnerability Database

289,697

Total vulnerabilities in the database

CVE-2020-11518

Zoho ManageEngine ADSelfService Plus before 5815 allows unauthenticated remote code execution.

Published: Apr 4, 2020
Updated: Apr 13, 2023
CVE: CVE-2020-11518
Severity: Critical
Exploit:

CVSS v3:

Severity: Critical
Score: 9.8
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CVSS v2:

Severity: High
Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
zohocorp / manageengine_adselfservice_plus	5.8-5800	5.8-5800.x
zohocorp / manageengine_adselfservice_plus	5.8-5801	5.8-5801.x
zohocorp / manageengine_adselfservice_plus	5.8-5802	5.8-5802.x
zohocorp / manageengine_adselfservice_plus	5.8-5803	5.8-5803.x
zohocorp / manageengine_adselfservice_plus	5.8-5806	5.8-5806.x
zohocorp / manageengine_adselfservice_plus	5.8-5807	5.8-5807.x
zohocorp / manageengine_adselfservice_plus	5.8-5808	5.8-5808.x
zohocorp / manageengine_adselfservice_plus	5.8-5804	5.8-5804.x
zohocorp / manageengine_adselfservice_plus	5.8-5805	5.8-5805.x
zohocorp / manageengine_adselfservice_plus	5.8-5814	5.8-5814.x
zohocorp / manageengine_adselfservice_plus	-	5.7.x
zohocorp / manageengine_adselfservice_plus	5.8	5.8.x
zohocorp / manageengine_adselfservice_plus	5.8-5809	5.8-5809.x
zohocorp / manageengine_adselfservice_plus	5.8-5810	5.8-5810.x
zohocorp / manageengine_adselfservice_plus	5.8-5811	5.8-5811.x
zohocorp / manageengine_adselfservice_plus	5.8-5812	5.8-5812.x
zohocorp / manageengine_adselfservice_plus	5.8-5813	5.8-5813.x

https://pitstop.manageengine.com/portal/community/topic/adselfservice-plus-5815-released-with-an-important-security-fix