Lucene search
China National Vulnerability DatabaseCNVD-2021-67509HistoryAug 31, 2021 - 12:00 a.m.
ZOHO ManageEngine Log360 Cross-Site Request Forgery Vulnerability
2021-08-3100:00:00
China National Vulnerability Database
www.cnvd.org.cn
9
log management
active directory auditing
security threats
attack attempts
user activity
regulatory compliance
vulnerability
request forgery
trusted users
login security.
EPSS
0.001
Percentile
45.5%
ZOHO ManageEngine Log360 is an integrated log management and Active Directory auditing and alerting solution from ZOHO USA. The solution helps you mitigate security threats, detect persistent attack attempts, detect suspicious user activity, and comply with regulatory requirements.A cross-site request forgery vulnerability exists in ZOHO ManageEngine Log360, which stems from the productβs failure to adequately validate that requests are coming from trusted users. An attack could disable login security settings through this vulnerability.
Related
prion
prion
Cross site request forgery (csrf)
2021-08-29 20:15:00
cvelist
cvelist
CVE-2021-40174
2021-08-29 19:17:59
cve
cve
CVE-2021-40174
2021-08-29 20:15:07
nvd
nvd
CVE-2021-40174
2021-08-29 20:15:07