Zoho Corp ManageEngine ServiceDesk Plus 10.5
Approved changes feed: RSS · Atom
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.5:-:*:*:*:*:*:*
part: a version: 10.5 update: -
| Vendor | Zohocorp (4f1ab088-ab0e-54ac-b0dc-2304879a7502) |
|---|---|
| Product | Manageengine Servicedesk Plus (25373568-3a9b-52b0-9856-05e6cf15479d) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2021-44526 |
vulnerable | 2026-06-03 14:45:36.476013 |
Details available
Zoho ManageEngine ServiceDesk Plus before 12003 allows authentication bypass in certain admin configurations.
Published: 2021-12-23T14:57:02.000Z
Updated: 2024-08-04T04:25:16.449Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2021-31160 |
vulnerable | 2026-06-03 14:44:31.792115 |
Details available
Zoho ManageEngine ServiceDesk Plus MSP before 10521 allows an attacker to access internal data.
Published: 2021-06-29T13:10:16.000Z
Updated: 2025-05-30T16:01:44.120Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2021-20080 |
vulnerable | 2026-06-03 14:43:41.035240 |
Details available
Insufficient output sanitization in ManageEngine ServiceDesk Plus before version 11200 and ManageEngine AssetExplorer before version 6800 allows a remote, unauthenticated attacker to conduct persistent cross-site scripting (XSS) attacks by uploading a crafted XML asset file.
Published: 2021-04-09T17:21:07.000Z
Updated: 2024-08-03T17:30:07.498Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-14048 |
vulnerable | 2026-06-03 14:41:37.856901 |
Details available
Zoho ManageEngine ServiceDesk Plus before 11.1 build 11115 allows remote unauthenticated attackers to change the installation status of deployed agents.
Published: 2020-06-12T01:41:42.000Z
Updated: 2024-08-04T12:32:14.676Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2019-12539 |
vulnerable | 2026-06-03 14:39:35.014902 |
Details available
An issue was discovered in the Purchase component of Zoho ManageEngine ServiceDesk Plus. There is XSS via the SearchN.do search field, a different vulnerability than CVE-2019-12189.
Published: 2019-07-11T13:16:35.000Z
Updated: 2024-08-04T23:24:39.129Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.