Unrated severityNVD Advisory· Published Nov 15, 2023· Updated Feb 13, 2025
ManageEngine Information Disclosure in Multiple Products
CVE-2023-6105
Description
An information disclosure vulnerability exists in multiple ManageEngine products that can result in encryption keys being exposed. A low-privileged OS user with access to the host where an affected ManageEngine product is installed can view and use the exposed key to decrypt product database passwords. This allows the user to access the ManageEngine product database.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
4- ManageEngine/Access Manager Plusv5Range: 0
- Range: 0
- Range: 0
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.