CVE-2025-11669
Broken Access Control
Zohocorp ManageEngine PAM360 versions before 8202; Password Manager Pro versions before 13221; Access Manager Plus versions prior to 4401 are vulnerable to an authorization issue in the initiate remote session functionality.
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
Affected products
Zohocorp · ManageEngine Access Manager PlusZohocorp · ManageEngine PAM360Zohocorp · ManageEngine Password Manager ProWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →