CVE-2016-9489 in Applications Managerinformação

Sumário

de MITRE

In ManageEngine Applications Manager 12 and 13, an authenticated user is able to alter all of their own properties, including own group, i.e. changing their group to one with higher privileges like "ADMIN". A user is also able to change properties of another user, e.g. change another user's password.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Reservar

21/11/2016

Divulgação

13/07/2018

Moderação

aceite

Entrada

VDB-121457

CPE

pronto

CWE

CWE-264 (confirmado)

CVSS

8.8 (NVD)

EPSS

0.00285

KEV

não

Atividades

muito baixo

Sector

Education, Pharma, ...

Fontes

MITRE	https://www.cve.org/CVERecord?id=CVE-2016-9489
NVD	https://nvd.nist.gov/vuln/detail/CVE-2016-9489
CVE Details	https://www.cvedetails.com/cve/CVE-2016-9489/

◂ Voltar Visão Geral Próximo ▸

Might our Artificial Intelligence support you?

Check our Alexa App!