CVE-2023-6105

Name of the Vulnerable Software and Affected Versions ManageEngine products (affected versions not specified)

Description An information disclosure issue exists in multiple ManageEngine products, resulting in the exposure of encryption keys. A low-privileged OS user with access to the host where an affected ManageEngine product is installed can view and use the exposed key to decrypt product database passwords, allowing access to the ManageEngine product database.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.