CVE-2020-15594 MEDIUM

CVE-2020-15594

Vendor N/A
Product n/a
Published September 29, 2020
Last update May 30, 2025

CVSS base score

4.3/10
Attack vector Network
Attack complexity Low
Privileges required Low
User interaction None
Confidentiality Low
Integrity None

CVSS vector

CVSS:3.1/AC:L/AV:N/A:N/C:L/I:N/PR:L/S:U/UI:N

What the vulnerability does

01Description

An SSRF issue was discovered in Zoho Application Control Plus before version 10.0.511. The mail gateway configuration feature allows an attacker to perform a scan in order to discover open ports on a machine as well as available machines on the network segment on which the instance of the product is deployed.

Key dates

02Disclosure timeline

September 29, 2020 CVE published
May 30, 2025 Record updated