VYPR
Unrated severityNVD Advisory· Published Feb 17, 2011· Updated Jun 16, 2026

CVE-2010-3273

CVE-2010-3273

Description

ZOHO ManageEngine ADSelfService Plus before 4.5 Build 4500 allows remote attackers to reset user passwords, and consequently obtain access to arbitrary user accounts, by providing a user id to accounts/ValidateUser, and then providing a new password to accounts/ResetResult.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • cpe:2.3:a:zohocorp:manageengine_adselfservice_plus:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:zohocorp:manageengine_adselfservice_plus:*:*:*:*:*:*:*:*range: <=4.4
    • (no CPE)range: <4.5 Build 4500

Patches

Vulnerability mechanics

References

8

News mentions

0

No linked articles in our index yet.

CVE-2010-3273 · VYPR