CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2011-2756

FileDownload.jsp in ManageEngine ServiceDesk Plus 8.0 before Build 8012 does not require authentication, which allows remote attackers to read files from a specific directory via unspecified vectors.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 54.0%

CVSS Severity

CVSS v2 Score 5.0

References

http://www.kb.cert.org/vuls/id/543310
http://www.kb.cert.org/vuls/id/543310

Products affected by CVE-2011-2756

Manageengine » Servicedesk Plus » Version: 8.0

cpe:2.3:a:manageengine:servicedesk_plus:8.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2011-2756

Products

Pricing

Contact Us