Critical ManageEngine ADSelfService Plus RCE flaw patched

Active Directory Don't miss Exploit Featured news ManageEngine News password management PoC Vulnerability Windows

A critical vulnerability (CVE-2020-11552) in ManageEngine ADSelfService Plus, an Active Directory password-reset solution, could allow attackers to remotely execute commands with system level privileges on the target Windows host. About ManageEngine ADSelfService Plus ManageEngine ADSelfService Plus is developed by ManageEngine, a division of Zoho Corporation, a software development company that focuses on web-based business tools and information technology. “ADSelfService Plus supports self-service password reset for WFH and remote users by enabling users to reset Windows … More

The post Critical ManageEngine ADSelfService Plus RCE flaw patched appeared first on Help Net Security.

Source: help net security.com
Critical ManageEngine ADSelfService Plus RCE flaw patched