Zoho · Zoho Manageengine Remote Access Plus · CVE-2019-11361
**Name of the Vulnerable Software and Affected Versions**
Zoho ManageEngine Remote Access Plus version 10.0.258
**Description**
The issue allows for privilege escalation due to improper validation of user permissions, potentially leading to a full application takeover.
**Recommendations**
For Zoho ManageEngine Remote Access Plus version 10.0.258, update to a version that properly validates user permissions to prevent privilege escalation and application takeover. At the moment, there is no information about a newer version that contains a fix for this vulnerability.