PT-2020-7721 · Manageengine · Zoho Manageengine Eventlog Analyzer
Published
2020-01-13
·
Updated
2020-03-26
·
CVE-2014-6039
CVSS v2.0
5.0
Medium
| Vector | AV:N/AC:L/Au:N/C:P/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
ManageEngine EventLog Analyzer versions 7 through 9.9 build 9002
Description
The issue is related to a Credentials Disclosure. A fixed version is available.
Recommendations
For versions 7 through 9.9 build 9002, update to version 10 Build 10000 to resolve the issue.
Exploit
Fix
Insufficiently Protected Credentials
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Zoho Manageengine Eventlog Analyzer