Zoho · Manageengine Endpoint Central · CVE-2024-9097
Name of the Vulnerable Software and Affected Versions:
ManageEngine Endpoint Central versions before 11.3.2440.09
Description:
The issue allows an attacker to change the username in the chat due to an IDOR vulnerability.
Recommendations:
For ManageEngine Endpoint Central versions before 11.3.2440.09, update to version 11.3.2440.09 or later to resolve the issue.