Unrated severityNVD Advisory· Published Sep 10, 2021· Updated Aug 4, 2024
CVE-2021-37414
CVE-2021-37414
Description
Zoho ManageEngine DesktopCentral before 10.0.709 allows anyone to get a valid user's APIKEY without authentication.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Zoho ManageEngine/DesktopCentraldescription
- Range: <10.0.709
Patches
Vulnerability mechanics
References
2- www.manageengine.com/products/desktop-central/help/introduction/release_notes.htmlmitrex_refsource_MISC
- www.manageengine.com/products/desktop-central/improper-access-control.htmlmitrex_refsource_MISC
News mentions
0No linked articles in our index yet.