Filtered by vendor Manageengine
Subscriptions
Filtered by product Servicedesk
Subscriptions
Total
2 CVE
CVE | Vendors | Products | Updated | CVSS v3.1 |
---|---|---|---|---|
CVE-2017-11512 | 1 Manageengine | 1 Servicedesk | 2024-11-21 | N/A |
The ManageEngine ServiceDesk 9.3.9328 is vulnerable to arbitrary file downloads due to improper restrictions of the pathname used in the name parameter for the download-snapshot URL. An unauthenticated remote attacker can use this vulnerability to download arbitrary files. | ||||
CVE-2017-11511 | 1 Manageengine | 1 Servicedesk | 2024-11-21 | N/A |
The ManageEngine ServiceDesk 9.3.9328 is vulnerable to arbitrary file downloads due to improper restrictions of the pathname used in the filepath parameter for the download-file URL. An unauthenticated remote attacker can use this vulnerability to download arbitrary files. |
Page 1 of 1.