Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
zohocorp manageengine servicedesk plus vulnerabilities and exploits
(subscribe to this query)
578
VMScore
CVE-2020-35682
Zoho ManageEngine ServiceDesk Plus prior to 11134 allows an Authentication Bypass (only during SAML login).
Zohocorp Manageengine Servicedesk Plus
Zohocorp Manageengine Servicedesk Plus 11.1
1 Github repository
578
VMScore
CVE-2017-9362
ManageEngine ServiceDesk Plus prior to 9312 contains an XML injection at add Configuration items CMDB API.
Zohocorp Manageengine Servicedesk Plus
1 Github repository
578
VMScore
CVE-2016-4889
ZOHO ManageEngine ServiceDesk Plus prior to 9.0 allows remote authenticated guest users to have unspecified impact by leveraging failure to restrict access to unknown functions.
Zohocorp Servicedesk Plus
445
VMScore
CVE-2022-35403
Zoho ManageEngine ServiceDesk Plus prior to 13008, ServiceDesk Plus MSP prior to 10606, and SupportCenter Plus prior to 11022 are affected by an unauthenticated local file disclosure vulnerability via ticket-creation email. (This also affects Asset Explorer prior to 6977 with aut...
Zohocorp Manageengine Servicedesk Plus 13.0
Zohocorp Manageengine Servicedesk Plus
Zohocorp Manageengine Servicedesk Plus Msp 10.6
Zohocorp Manageengine Servicedesk Plus Msp
Zohocorp Manageengine Supportcenter Plus 11.0
Zohocorp Manageengine Supportcenter Plus
Zohocorp Manageengine Assetexplorer 6.9
Zohocorp Manageengine Assetexplorer
445
VMScore
CVE-2022-32551
Zoho ManageEngine ServiceDesk Plus MSP prior to 10604 allows path traversal (to WEBINF/web.xml from sample/WEB-INF/web.xml or sample/META-INF/web.xml).
Zohocorp Manageengine Servicedesk Plus Msp 10.6
Zohocorp Manageengine Servicedesk Plus Msp
445
VMScore
CVE-2022-25245
Zoho ManageEngine ServiceDesk Plus prior to 13001 allows anyone to know the organisation's default currency name.
Zohocorp Manageengine Servicedesk Plus
Zohocorp Manageengine Servicedesk Plus 13.0
445
VMScore
CVE-2021-31160
Zoho ManageEngine ServiceDesk Plus MSP prior to 10521 allows an malicious user to access internal data.
Zohocorp Manageengine Servicedesk Plus 10.5
Zohocorp Manageengine Servicedesk Plus Msp
Zohocorp Manageengine Servicedesk Plus Msp 10.5
445
VMScore
CVE-2021-31530
Zoho ManageEngine ServiceDesk Plus MSP prior to 10522 is vulnerable to Information Disclosure.
Zohocorp Manageengine Servicedesk Plus Msp
Zohocorp Manageengine Servicedesk Plus Msp 10.5
445
VMScore
CVE-2021-31159
Zoho ManageEngine ServiceDesk Plus MSP prior to 10519 is vulnerable to a User Enumeration bug due to improper error-message generation in the Forgot Password functionality, aka SDPMSP-15732.
Zohocorp Manageengine Servicedesk Plus Msp
Zohocorp Manageengine Servicedesk Plus Msp 10.5
1 Github repository
445
VMScore
CVE-2020-14048
Zoho ManageEngine ServiceDesk Plus prior to 11.1 build 11115 allows remote unauthenticated malicious users to change the installation status of deployed agents.
Zohocorp Manageengine Servicedesk Plus 8.2
Zohocorp Manageengine Servicedesk Plus 9.0
Zohocorp Manageengine Servicedesk Plus 9.1
Zohocorp Manageengine Servicedesk Plus 9.2
Zohocorp Manageengine Servicedesk Plus 9.3
Zohocorp Manageengine Servicedesk Plus 9.4
Zohocorp Manageengine Servicedesk Plus 10.0.0
Zohocorp Manageengine Servicedesk Plus 10.5
Zohocorp Manageengine Servicedesk Plus 11.0
Zohocorp Manageengine Servicedesk Plus 11.1
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »