Zoho NetFlow Analyzer build 10250 and earlier does not check for administrative authorization, which allows remote attackers to obtain sensitive information, modify passwords, or remove accounts by leveraging the guest role.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: jpcert

Published: 2015-06-09T00:00:00

Updated: 2024-08-06T05:32:20.668Z

Reserved: 2015-04-07T00:00:00

Link: CVE-2015-2959

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2015-06-09T00:59:01.353

Modified: 2024-11-21T02:28:23.820

Link: CVE-2015-2959

cve-icon Redhat

No data.