Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5
CVE-2017-11511
- EPSS 4.1%
- Published 08.11.2017 22:29:00
- Last modified 20.04.2025 01:37:25
The ManageEngine ServiceDesk 9.3.9328 is vulnerable to arbitrary file downloads due to improper restrictions of the pathname used in the filepath parameter for the download-file URL. An unauthenticated remote attacker can use this vulnerability to do...
7.5
CVE-2017-11512
- EPSS 86.78%
- Published 08.11.2017 22:29:00
- Last modified 20.04.2025 01:37:25
The ManageEngine ServiceDesk 9.3.9328 is vulnerable to arbitrary file downloads due to improper restrictions of the pathname used in the name parameter for the download-snapshot URL. An unauthenticated remote attacker can use this vulnerability to do...
1