vulnerability
Zoho ManageEngine ADSelfService Plus: CVE-2024-0252: Authenticated Remote Code Execution
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 9 | (AV:N/AC:L/Au:S/C:C/I:C/A:C) | Jan 10, 2024 | Jan 15, 2024 | Jul 2, 2025 |
Severity
9
CVSS
(AV:N/AC:L/Au:S/C:C/I:C/A:C)
Published
Jan 10, 2024
Added
Jan 15, 2024
Modified
Jul 2, 2025
Description
An authenticated remote code execution in the load balancer component has been fixed and released in the ADSelfService Plus version 6402.
Solution
zoho-manageengine-adselfservice-plus-upgrade-latest
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.