CVE-2024-27310

CWE-902 documents2 sources

Severity

6.5MEDIUM

EPSS

5.8%

top 9.50%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Timeline

PublishedMay 27

Description

Zoho ManageEngine ADSelfService Plus versions below 6401 are vulnerable to the DOS attack due to the malicious LDAP input.

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:LExploitability: 3.9 | Impact: 1.4

CVEList

DOS Vulnerability↗2024-05-27

▶