Description
Zoho ManageEngine Remote Access Plus before 10.1.2121.1 has hardcoded credentials for read-only access. The credentials are in the source code that corresponds to the DCBackupRestore JAR archive.
Exploits
No known exploits found for this CVE.
Search Exploit-DBReferences
cve@mitre.org
https://medium.com/nestedif/vulnerability-disclosure-hardcoded-keys-password-zoho-r-a-p-318aa9bba2eaf854a3a-2127-422b-91ae-364da2661108
https://medium.com/nestedif/vulnerability-disclosure-hardcoded-keys-password-zoho-r-a-p-318aa9bba2eaf854a3a-2127-422b-91ae-364da2661108
https://www.manageengine.com/remote-desktop-management/hotfix-readme.html