CVE-2016-1159

Summary

In ZOHO Password Manager Pro (PMP) 8.3.0 (Build 8303) and 8.4.0 (Build 8400,8401,8402), underprivileged users can obtain sensitive information (entry password history) via a vulnerable hidden service.

Affected Software

VendorProductVersion RangeStatus
ZOHOPassword Manager Pro (PMP)8.3.0 (Build 8303affected
ZOHOPassword Manager Pro (PMP)8.4.0 (Build 8400affected
ZOHOPassword Manager Pro (PMP)8401affected
ZOHOPassword Manager Pro (PMP)8402).affected

Weaknesses

  • obtain sensitive information

ADP Enrichment

CVE Program Container

Additional References

References