EPSS
Percentile
94.5%
Zoho ManageEngine ServiceDesk Plus MSP before 10519 is vulnerable to a User Enumeration bug due to improper error-message generation in the Forgot Password functionality, aka SDPMSP-15732.
packetstormsecurity.com/files/163192/Zoho-ManageEngine-ServiceDesk-Plus-9.4-User-Enumeration.html
github.com/ricardojoserf/CVE-2021-31159
www.manageengine.com
www.manageengine.com/products/service-desk-msp/readme.html#10519