CVE-2020-21641 Information

Description

Out-of-Band XML External Entity (OOB-XXE) vulnerability in Zoho ManageEngine Analytics Plus before 4.3.5 allows remote attackers to read arbitrary files enumerate folders and scan internal ports via crafted XML license file.

Reference

https://www.manageengine.com/analytics-plus/release-notes.html