Vulnerability Details CVE-2022-40771
Zoho ManageEngine ServiceDesk Plus versions 13010 and prior are vulnerable to an XML External Entity attack that leads to Information Disclosure.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 32.0%
CVSS Severity
CVSS v3 Score 4.9
References
Products affected by CVE-2022-40771
-
cpe:2.3:a:zohocorp:manageengine_assetexplorer:-
-
cpe:2.3:a:zohocorp:manageengine_assetexplorer:1.0.34
-
cpe:2.3:a:zohocorp:manageengine_assetexplorer:4.0
-
cpe:2.3:a:zohocorp:manageengine_assetexplorer:5.6
-
cpe:2.3:a:zohocorp:manageengine_assetexplorer:6.1
-
cpe:2.3:a:zohocorp:manageengine_assetexplorer:6.2.0
-
cpe:2.3:a:zohocorp:manageengine_assetexplorer:6.5
-
cpe:2.3:a:zohocorp:manageengine_assetexplorer:6.9
-
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:-
-
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.0
-
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.0.0
-
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.5
-
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.0
-
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1
-
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.2
-
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.3
-
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:12.0
-
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:13.0
-
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:14.0
-
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:8.1
-
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:8.2
-
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0
-
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.1
-
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2
-
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3
-
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.4
-
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:-
-
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5
-
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.6
-
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:13.0
-
cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:-
-
cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:11.0
-
cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:7.9
-
cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:7.90
-
cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:8.0
-
cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:8.1