Lucene search
TenableCVELIST:CVE-2021-20081HistoryJun 10, 2021 - 11:01 a.m.
CVE-2021-20081
2021-06-1011:01:56
tenable
www.cve.org
4
cve-2021-20081
manageengine servicedesk plus
remote attacker
authenticated
arbitrary commands
system privileges
EPSS
0.032
Percentile
91.2%
Incomplete List of Disallowed Inputs in ManageEngine ServiceDesk Plus before version 11205 allows a remote, authenticated attacker to execute arbitrary commands with SYSTEM privileges.
CNA Affected
[
{
"product": "ManageEngine ServiceDesk Plus",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "Before 11205"
}
]
}
]Related
cnvd
cnvd
ZOHO ManageEngine ServiceDesk Plus Input Validation Error Vulnerability
2021-06-11 00:00:00
cve
cve
CVE-2021-20081
2021-06-10 12:15:07
nvd
nvd
CVE-2021-20081
2021-06-10 12:15:07
checkpoint_advisories
checkpoint_advisories
ManageEngine ServiceDesk Plus Command Injection (CVE-2021-20081)
2021-07-21 00:00:00
prion
prion
Design/Logic Flaw
2021-06-10 12:15:00
nessus
nessus
ManageEngine ServiceDesk Plus < 11.2 Build 11205 RCE
2021-07-02 00:00:00