← Back to CVE List
CVE-2015-2560
Manage Engine Desktop Central 9 before build 90135 allows remote attackers to change passwords of users with the Administrator role via an addOrModifyUser operation to servlets/DCOperationsServlet.
> MITRE Terms of Use apply – see LICENSE‑MITRE.txt