PT-2021-19552 · Zoho · Manageengine Password Manager Pro

Published

2021-06-16

·

Updated

2022-07-12

·

CVE-2021-31857

CVSS v3.1

5.9

Medium

VectorAV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
Name of the Vulnerable Software and Affected Versions: Zoho ManageEngine Password Manager Pro versions prior to 11.1 build 11104
Description: The issue allows attackers to retrieve credentials via a browser extension for non-website resource types.
Recommendations: For versions prior to 11.1 build 11104, update to version 11.1 build 11104 or later to resolve the issue.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Related Identifiers

CVE-2021-31857

Affected Products

Manageengine Password Manager Pro