Lucene search

CVE-2021-20080

🗓️ 09 Apr 2021 18:13:15Reported by tenableType

cve🔗 web.nvd.nist.gov📰️ 3 Media mentions👁 81 Views

Insufficient output sanitization in ManageEngine ServiceDesk Plus before version 11200 and ManageEngine AssetExplorer before version 6800 allows a remote attacker to conduct persistent XSS attacks

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 6
Tenable Nessus	ManageEngine AssentExplorer < 6.8 Unauthenticated Stored XSS	12 Apr 202100:00	–	nessus
Tenable Nessus	ManageEngine ServiceDesk Plus < 11.2 Build 11200 Unauthenticated Stored XSS	12 Apr 202100:00	–	nessus
NVD	CVE-2021-20080	9 Apr 202118:15	–	nvd
Check Point Advisories	Zoho ManageEngine ServiceDesk Plus Cross-Site Scripting (CVE-2021-20080)	20 Nov 202200:00	–	checkpoint_advisories
Cvelist	CVE-2021-20080	9 Apr 202117:21	–	cvelist
Prion	Cross site scripting	9 Apr 202118:15	–	prion

Nvd

Node

zohocorp manageengine_servicedesk_plusMatch8.1-

zohocorp manageengine_servicedesk_plusMatch8.2-

zohocorp manageengine_servicedesk_plusMatch8.28201

zohocorp manageengine_servicedesk_plusMatch8.28202

zohocorp manageengine_servicedesk_plusMatch8.28203

zohocorp manageengine_servicedesk_plusMatch8.28204

zohocorp manageengine_servicedesk_plusMatch8.28205

zohocorp manageengine_servicedesk_plusMatch8.28206

zohocorp manageengine_servicedesk_plusMatch8.28207

zohocorp manageengine_servicedesk_plusMatch8.28208

zohocorp manageengine_servicedesk_plusMatch8.28209

zohocorp manageengine_servicedesk_plusMatch8.28210

zohocorp manageengine_servicedesk_plusMatch8.28211

zohocorp manageengine_servicedesk_plusMatch8.28212

zohocorp manageengine_servicedesk_plusMatch8.28213

zohocorp manageengine_servicedesk_plusMatch8.28214

zohocorp manageengine_servicedesk_plusMatch8.28215

zohocorp manageengine_servicedesk_plusMatch8.28216

zohocorp manageengine_servicedesk_plusMatch8.28217

zohocorp manageengine_servicedesk_plusMatch9.0-

zohocorp manageengine_servicedesk_plusMatch9.09000

zohocorp manageengine_servicedesk_plusMatch9.09001

zohocorp manageengine_servicedesk_plusMatch9.09002

zohocorp manageengine_servicedesk_plusMatch9.09003

zohocorp manageengine_servicedesk_plusMatch9.09004

zohocorp manageengine_servicedesk_plusMatch9.09005

zohocorp manageengine_servicedesk_plusMatch9.09006

zohocorp manageengine_servicedesk_plusMatch9.09007

zohocorp manageengine_servicedesk_plusMatch9.09008

zohocorp manageengine_servicedesk_plusMatch9.09009

zohocorp manageengine_servicedesk_plusMatch9.09010

zohocorp manageengine_servicedesk_plusMatch9.09011

zohocorp manageengine_servicedesk_plusMatch9.09012

zohocorp manageengine_servicedesk_plusMatch9.09013

zohocorp manageengine_servicedesk_plusMatch9.09014

zohocorp manageengine_servicedesk_plusMatch9.09016

zohocorp manageengine_servicedesk_plusMatch9.09017

zohocorp manageengine_servicedesk_plusMatch9.09018

zohocorp manageengine_servicedesk_plusMatch9.09019

zohocorp manageengine_servicedesk_plusMatch9.09020

zohocorp manageengine_servicedesk_plusMatch9.09021

zohocorp manageengine_servicedesk_plusMatch9.09022

zohocorp manageengine_servicedesk_plusMatch9.09023

zohocorp manageengine_servicedesk_plusMatch9.09024

zohocorp manageengine_servicedesk_plusMatch9.09025

zohocorp manageengine_servicedesk_plusMatch9.09026

zohocorp manageengine_servicedesk_plusMatch9.09027

zohocorp manageengine_servicedesk_plusMatch9.09028

zohocorp manageengine_servicedesk_plusMatch9.09029

zohocorp manageengine_servicedesk_plusMatch9.09030

zohocorp manageengine_servicedesk_plusMatch9.09031

zohocorp manageengine_servicedesk_plusMatch9.09032

zohocorp manageengine_servicedesk_plusMatch9.09033

zohocorp manageengine_servicedesk_plusMatch9.09034

zohocorp manageengine_servicedesk_plusMatch9.09035

zohocorp manageengine_servicedesk_plusMatch9.09036

zohocorp manageengine_servicedesk_plusMatch9.09037

zohocorp manageengine_servicedesk_plusMatch9.09038

zohocorp manageengine_servicedesk_plusMatch9.09039

zohocorp manageengine_servicedesk_plusMatch9.09040

zohocorp manageengine_servicedesk_plusMatch9.09041

zohocorp manageengine_servicedesk_plusMatch9.09042

zohocorp manageengine_servicedesk_plusMatch9.09043

zohocorp manageengine_servicedesk_plusMatch9.09044

zohocorp manageengine_servicedesk_plusMatch9.09045

zohocorp manageengine_servicedesk_plusMatch9.09046

zohocorp manageengine_servicedesk_plusMatch9.09047

zohocorp manageengine_servicedesk_plusMatch9.09048

zohocorp manageengine_servicedesk_plusMatch9.09049

zohocorp manageengine_servicedesk_plusMatch9.1-

zohocorp manageengine_servicedesk_plusMatch9.19100

zohocorp manageengine_servicedesk_plusMatch9.19101

zohocorp manageengine_servicedesk_plusMatch9.19102

zohocorp manageengine_servicedesk_plusMatch9.19103

zohocorp manageengine_servicedesk_plusMatch9.19104

zohocorp manageengine_servicedesk_plusMatch9.19105

zohocorp manageengine_servicedesk_plusMatch9.19106

zohocorp manageengine_servicedesk_plusMatch9.19107

zohocorp manageengine_servicedesk_plusMatch9.19108

zohocorp manageengine_servicedesk_plusMatch9.19109

zohocorp manageengine_servicedesk_plusMatch9.19110

zohocorp manageengine_servicedesk_plusMatch9.19111

zohocorp manageengine_servicedesk_plusMatch9.19112

zohocorp manageengine_servicedesk_plusMatch9.19113

zohocorp manageengine_servicedesk_plusMatch9.19114

zohocorp manageengine_servicedesk_plusMatch9.19115

zohocorp manageengine_servicedesk_plusMatch9.19116

zohocorp manageengine_servicedesk_plusMatch9.19117

zohocorp manageengine_servicedesk_plusMatch9.19118

zohocorp manageengine_servicedesk_plusMatch9.19119

zohocorp manageengine_servicedesk_plusMatch9.19120

zohocorp manageengine_servicedesk_plusMatch9.19121

zohocorp manageengine_servicedesk_plusMatch9.2-

zohocorp manageengine_servicedesk_plusMatch9.29200

zohocorp manageengine_servicedesk_plusMatch9.29201

zohocorp manageengine_servicedesk_plusMatch9.29202

zohocorp manageengine_servicedesk_plusMatch9.29203

zohocorp manageengine_servicedesk_plusMatch9.29204

zohocorp manageengine_servicedesk_plusMatch9.29205

zohocorp manageengine_servicedesk_plusMatch9.29206

zohocorp manageengine_servicedesk_plusMatch9.29207

zohocorp manageengine_servicedesk_plusMatch9.29208

zohocorp manageengine_servicedesk_plusMatch9.29209

zohocorp manageengine_servicedesk_plusMatch9.29210

zohocorp manageengine_servicedesk_plusMatch9.29211

zohocorp manageengine_servicedesk_plusMatch9.29212

zohocorp manageengine_servicedesk_plusMatch9.29213

zohocorp manageengine_servicedesk_plusMatch9.29214

zohocorp manageengine_servicedesk_plusMatch9.29215

zohocorp manageengine_servicedesk_plusMatch9.29216

zohocorp manageengine_servicedesk_plusMatch9.29217

zohocorp manageengine_servicedesk_plusMatch9.29218

zohocorp manageengine_servicedesk_plusMatch9.29219

zohocorp manageengine_servicedesk_plusMatch9.29220

zohocorp manageengine_servicedesk_plusMatch9.29221

zohocorp manageengine_servicedesk_plusMatch9.29222

zohocorp manageengine_servicedesk_plusMatch9.29223

zohocorp manageengine_servicedesk_plusMatch9.29224

zohocorp manageengine_servicedesk_plusMatch9.29225

zohocorp manageengine_servicedesk_plusMatch9.29226

zohocorp manageengine_servicedesk_plusMatch9.29227

zohocorp manageengine_servicedesk_plusMatch9.29228

zohocorp manageengine_servicedesk_plusMatch9.29229

zohocorp manageengine_servicedesk_plusMatch9.29230

zohocorp manageengine_servicedesk_plusMatch9.29231

zohocorp manageengine_servicedesk_plusMatch9.29232

zohocorp manageengine_servicedesk_plusMatch9.29233

zohocorp manageengine_servicedesk_plusMatch9.29234

zohocorp manageengine_servicedesk_plusMatch9.29235

zohocorp manageengine_servicedesk_plusMatch9.29236

zohocorp manageengine_servicedesk_plusMatch9.29237

zohocorp manageengine_servicedesk_plusMatch9.29238

zohocorp manageengine_servicedesk_plusMatch9.29239

zohocorp manageengine_servicedesk_plusMatch9.29240

zohocorp manageengine_servicedesk_plusMatch9.29241

zohocorp manageengine_servicedesk_plusMatch9.29242

zohocorp manageengine_servicedesk_plusMatch9.3-

zohocorp manageengine_servicedesk_plusMatch9.39300

zohocorp manageengine_servicedesk_plusMatch9.39301

zohocorp manageengine_servicedesk_plusMatch9.39302

zohocorp manageengine_servicedesk_plusMatch9.39303

zohocorp manageengine_servicedesk_plusMatch9.39304

zohocorp manageengine_servicedesk_plusMatch9.39305

zohocorp manageengine_servicedesk_plusMatch9.39306

zohocorp manageengine_servicedesk_plusMatch9.39307

zohocorp manageengine_servicedesk_plusMatch9.39308

zohocorp manageengine_servicedesk_plusMatch9.39309

zohocorp manageengine_servicedesk_plusMatch9.39310

zohocorp manageengine_servicedesk_plusMatch9.39311

zohocorp manageengine_servicedesk_plusMatch9.39312

zohocorp manageengine_servicedesk_plusMatch9.39313

zohocorp manageengine_servicedesk_plusMatch9.39314

zohocorp manageengine_servicedesk_plusMatch9.39315

zohocorp manageengine_servicedesk_plusMatch9.39316

zohocorp manageengine_servicedesk_plusMatch9.39317

zohocorp manageengine_servicedesk_plusMatch9.39318

zohocorp manageengine_servicedesk_plusMatch9.39319

zohocorp manageengine_servicedesk_plusMatch9.39320

zohocorp manageengine_servicedesk_plusMatch9.39321

zohocorp manageengine_servicedesk_plusMatch9.39322

zohocorp manageengine_servicedesk_plusMatch9.39323

zohocorp manageengine_servicedesk_plusMatch9.39324

zohocorp manageengine_servicedesk_plusMatch9.39325

zohocorp manageengine_servicedesk_plusMatch9.39326

zohocorp manageengine_servicedesk_plusMatch9.39327

zohocorp manageengine_servicedesk_plusMatch9.39328

zohocorp manageengine_servicedesk_plusMatch9.39329

zohocorp manageengine_servicedesk_plusMatch9.39330

zohocorp manageengine_servicedesk_plusMatch9.39331

zohocorp manageengine_servicedesk_plusMatch9.39332

zohocorp manageengine_servicedesk_plusMatch9.39333

zohocorp manageengine_servicedesk_plusMatch9.39334

zohocorp manageengine_servicedesk_plusMatch9.39335

zohocorp manageengine_servicedesk_plusMatch9.39336

zohocorp manageengine_servicedesk_plusMatch9.4-

zohocorp manageengine_servicedesk_plusMatch9.49400

zohocorp manageengine_servicedesk_plusMatch9.49401

zohocorp manageengine_servicedesk_plusMatch9.49402

zohocorp manageengine_servicedesk_plusMatch9.49403

zohocorp manageengine_servicedesk_plusMatch9.49404

zohocorp manageengine_servicedesk_plusMatch9.49405

zohocorp manageengine_servicedesk_plusMatch9.49406

zohocorp manageengine_servicedesk_plusMatch9.49407

zohocorp manageengine_servicedesk_plusMatch9.49408

zohocorp manageengine_servicedesk_plusMatch9.49409

zohocorp manageengine_servicedesk_plusMatch9.49410

zohocorp manageengine_servicedesk_plusMatch9.49411

zohocorp manageengine_servicedesk_plusMatch9.49412

zohocorp manageengine_servicedesk_plusMatch9.49413

zohocorp manageengine_servicedesk_plusMatch9.49414

zohocorp manageengine_servicedesk_plusMatch9.49415

zohocorp manageengine_servicedesk_plusMatch9.49416

zohocorp manageengine_servicedesk_plusMatch9.49417

zohocorp manageengine_servicedesk_plusMatch9.49418

zohocorp manageengine_servicedesk_plusMatch9.49419

zohocorp manageengine_servicedesk_plusMatch9.49420

zohocorp manageengine_servicedesk_plusMatch9.49421

zohocorp manageengine_servicedesk_plusMatch9.49422

zohocorp manageengine_servicedesk_plusMatch9.49423

zohocorp manageengine_servicedesk_plusMatch9.49424

zohocorp manageengine_servicedesk_plusMatch9.49425

zohocorp manageengine_servicedesk_plusMatch9.49426

zohocorp manageengine_servicedesk_plusMatch9.49427

zohocorp manageengine_servicedesk_plusMatch10.0

zohocorp manageengine_servicedesk_plusMatch10.0.0-

zohocorp manageengine_servicedesk_plusMatch10.0.010000

zohocorp manageengine_servicedesk_plusMatch10.0.010001

zohocorp manageengine_servicedesk_plusMatch10.0.010002

zohocorp manageengine_servicedesk_plusMatch10.0.010003

zohocorp manageengine_servicedesk_plusMatch10.0.010004

zohocorp manageengine_servicedesk_plusMatch10.0.010005

zohocorp manageengine_servicedesk_plusMatch10.0.010006

zohocorp manageengine_servicedesk_plusMatch10.0.010007

zohocorp manageengine_servicedesk_plusMatch10.0.010008

zohocorp manageengine_servicedesk_plusMatch10.0.010009

zohocorp manageengine_servicedesk_plusMatch10.0.010010

zohocorp manageengine_servicedesk_plusMatch10.0.010011

zohocorp manageengine_servicedesk_plusMatch10.0.010012

zohocorp manageengine_servicedesk_plusMatch10.0.010013

zohocorp manageengine_servicedesk_plusMatch10.0.010014

zohocorp manageengine_servicedesk_plusMatch10.0.010015

zohocorp manageengine_servicedesk_plusMatch10.0.010016

zohocorp manageengine_servicedesk_plusMatch10.0.010017

zohocorp manageengine_servicedesk_plusMatch10.0.010018

zohocorp manageengine_servicedesk_plusMatch10.0.010019

zohocorp manageengine_servicedesk_plusMatch10.0.010020

zohocorp manageengine_servicedesk_plusMatch10.0.010021

zohocorp manageengine_servicedesk_plusMatch10.5-

zohocorp manageengine_servicedesk_plusMatch10.510500

zohocorp manageengine_servicedesk_plusMatch10.510501

zohocorp manageengine_servicedesk_plusMatch10.510502

zohocorp manageengine_servicedesk_plusMatch10.510503

zohocorp manageengine_servicedesk_plusMatch10.510504

zohocorp manageengine_servicedesk_plusMatch10.510505

zohocorp manageengine_servicedesk_plusMatch10.510506

zohocorp manageengine_servicedesk_plusMatch10.510507

zohocorp manageengine_servicedesk_plusMatch10.510508

zohocorp manageengine_servicedesk_plusMatch10.510509

zohocorp manageengine_servicedesk_plusMatch10.510510

zohocorp manageengine_servicedesk_plusMatch10.510511

zohocorp manageengine_servicedesk_plusMatch10.510512

zohocorp manageengine_servicedesk_plusMatch10.510513

zohocorp manageengine_servicedesk_plusMatch10.510514

zohocorp manageengine_servicedesk_plusMatch11.0-

zohocorp manageengine_servicedesk_plusMatch11.011000

zohocorp manageengine_servicedesk_plusMatch11.011001

zohocorp manageengine_servicedesk_plusMatch11.011002

zohocorp manageengine_servicedesk_plusMatch11.011003

zohocorp manageengine_servicedesk_plusMatch11.011004

zohocorp manageengine_servicedesk_plusMatch11.011005

zohocorp manageengine_servicedesk_plusMatch11.011006

zohocorp manageengine_servicedesk_plusMatch11.011007

zohocorp manageengine_servicedesk_plusMatch11.011008

zohocorp manageengine_servicedesk_plusMatch11.011009

zohocorp manageengine_servicedesk_plusMatch11.011010

zohocorp manageengine_servicedesk_plusMatch11.1-

zohocorp manageengine_servicedesk_plusMatch11.111100

zohocorp manageengine_servicedesk_plusMatch11.111101

zohocorp manageengine_servicedesk_plusMatch11.111102

zohocorp manageengine_servicedesk_plusMatch11.111103

zohocorp manageengine_servicedesk_plusMatch11.111104

zohocorp manageengine_servicedesk_plusMatch11.111105

zohocorp manageengine_servicedesk_plusMatch11.111106

zohocorp manageengine_servicedesk_plusMatch11.111107

zohocorp manageengine_servicedesk_plusMatch11.111108

zohocorp manageengine_servicedesk_plusMatch11.111109

zohocorp manageengine_servicedesk_plusMatch11.111110

zohocorp manageengine_servicedesk_plusMatch11.111111

zohocorp manageengine_servicedesk_plusMatch11.111112

zohocorp manageengine_servicedesk_plusMatch11.111113

zohocorp manageengine_servicedesk_plusMatch11.111114

zohocorp manageengine_servicedesk_plusMatch11.111115

zohocorp manageengine_servicedesk_plusMatch11.111116

zohocorp manageengine_servicedesk_plusMatch11.111117

zohocorp manageengine_servicedesk_plusMatch11.1build11118

zohocorp manageengine_servicedesk_plusMatch11.1build11119

[
  {
    "product": "ManageEngine ServiceDesk Plus",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "Before 11200"
      }
    ]
  },
  {
    "product": "ManageEngine AssetExplorer",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "Before 6800"
      }
    ]
  }
]

Source	Link
tenable	www.tenable.com/security/research/tra-2021-11

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

09 Apr 2021 18:15Current

5.9Medium risk

Vulners AI Score5.9

CVSS24.3

CVSS36.1

EPSS0.35338

CWE-79