CVE-2020-11532 in DataSecurity Plus
要約
〜によって MITRE
Zoho ManageEngine DataSecurity Plus prior to 6.0.1 uses default admin credentials to communicate with a DataEngine Xnode server. This allows an attacker to bypass authentication for this server and execute all operations in the context of admin user.
If you want to get best quality of vulnerability data, you may have to visit VulDB.