Incomplete List of Disallowed Inputs in ManageEngine ServiceDesk Plus before version 11205 allows a remote, authenticated attacker to execute arbitrary commands with SYSTEM privileges.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Manageengine_servicedesk_plus | Zohocorp | * | * |
Manageengine_servicedesk_plus | Zohocorp | 11.2 | 11.2 |
Manageengine_servicedesk_plus | Zohocorp | 11.2 | 11.2 |
Manageengine_servicedesk_plus | Zohocorp | 11.2 | 11.2 |
Manageengine_servicedesk_plus | Zohocorp | 11.2 | 11.2 |
Manageengine_servicedesk_plus | Zohocorp | 11.2 | 11.2 |