CyberRota Yorumu
Saldırganın giriş yapmış olması gerekebilir.
CVE
CVE-2026-11374
Severity
CRITICAL
CVSS
9
EPSS
%1.24
Orijinal NVD Açıklaması
In ManageEngine ADSelfService Plus, RecoveryManager Plus, M365 Manager Plus, and ADAudit Plus, the SSO tickets generated to authenticate that session could be predicted by an unauthenticated user, leading to account takeover.