Vulnerability Details CVE-2019-16962
Zoho ManageEngine Desktop Central 10.0.430 allows HTML injection via a modified Report Name in a New Custom Report.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.022
EPSS Ranking 83.4%
CVSS Severity
CVSS v3 Score 5.4
CVSS v2 Score 3.5
References
- https://www.esecforte.com/manage-engine-desktopcentral-india-html-injection-vulnerability/
- https://www.manageengine.com/products/desktop-central/download.html
- https://www.esecforte.com/manage-engine-desktopcentral-india-html-injection-vulnerability/
- https://www.manageengine.com/products/desktop-central/download.html
Products affected by CVE-2019-16962
-
cpe:2.3:a:zohocorp:manageengine_desktop_central:10.0.430