← back
CVE-2020-15394

CVE-2020-15394

EPSS 7.9%
The REST API in Zoho ManageEngine Applications Manager before build 14740 allows an unauthenticated SQL Injection via a crafted request, leading to Remote Code Execution.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://www.manageengine.comhttps://www.manageengine.com/products/applications_manager/issues.html#v14740https://www.manageengine.com/products/applications_manager/security-updates/security-updates-cve-2020-15394.html