Medium severity4.3NVD Advisory· Published Jan 31, 2020· Updated Jun 17, 2026
CVE-2020-8422
CVE-2020-8422
Description
An authorization issue was discovered in the Credential Manager feature in Zoho ManageEngine Remote Access Plus before 10.0.450. A user with the Guest role can extract the collection of all defined credentials of remote machines: the credential name, credential type, user name, domain/workgroup name, and description (but not the password).
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Zoho/ManageEngine Remote Access Plusdescription
- Range: <10.0.450
Patches
Vulnerability mechanics
References
3- excellium-services.com/cert-xlm-advisory/CVE-2020-8422nvdThird Party Advisory
- excellium-services.com/cert-xlm-advisory/cve-2020-8422/nvdThird Party Advisory
- cds.thalesgroup.com/en/tcs-cert/CVE-2020-8422nvd
News mentions
0No linked articles in our index yet.