CPE Details
Zoho Corp ManageEngine ServiceDesk Plus MSP 14.7 14720
14.7
2025-01-02
15h04 +00:00
15h04 +00:00
2025-01-02
15h04 +00:00
15h04 +00:00
Alerte pour un CPE
Restez informé de toutes modifications pour un CPE spécifique.
CPE Name: cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:14.7:14720:*:*:*:*:*:*
Informations
Vendor
zohocorpProduct
manageengine_servicedesk_plus_mspVersion
14.7Update
14720Related CVE
| CVE ID | Publié | Description | Score | Gravité |
|---|---|---|---|---|
| Zohocorp ManageEngine ServiceDesk Plus MSP and SupportCenter Plus versions below 14920 are vulnerable to authenticated Local File Inclusion (LFI) in the Admin module, where help card content is loaded. | 6.5 |
Moyen |
||
| Zohocorp ManageEngine ServiceDesk Plus versions below 14920 , ServiceDesk Plus MSP and SupportCentre Plus versions below 14910 are vulnerable to Stored XSS in the task feature. | 6.3 |
Moyen |
||
| An Stored Cross-site Scripting vulnerability in request module affects Zohocorp ManageEngine ServiceDesk Plus, ServiceDesk Plus MSP and SupportCenter Plus.This issue affects ServiceDesk Plus versions: through 14810; ServiceDesk Plus MSP: through 14800; SupportCenter Plus: through 14800. | 6.3 |
Moyen |
||
| Zohocorp ManageEngine Endpoint Central affected by Incorrect authorization vulnerability in remote office deploy configurations.This issue affects Endpoint Central: before 11.3.2416.04 and before 11.3.2400.25. | 8.3 |
Haute |
