89 matches found
CVE-2022-35403
Zoho ManageEngine ServiceDesk Plus before 13008, ServiceDesk Plus MSP before 10606, and SupportCenter Plus before 11022 are affected by an unauthenticated local file disclosure vulnerability via ticket-creation email. This also affects Asset Explorer before 6977 with authentication...
EUVD-2019-8676
Malware in sbrugna...
EUVD-2021-7567
Malicious code in bioql PyPI...
EUVD-2021-7565
Malicious code in bioql PyPI...
EUVD-2023-27175
Malicious code in bioql PyPI...
EUVD-2025-25343
Malicious code in bioql PyPI...
EUVD-2021-7566
Malicious code in bioql PyPI...
EUVD-2023-30396
Malicious code in bioql PyPI...
EUVD-2023-30395
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2021-20109
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Due to the Asset Explorer agent not validating HTTPS certificates, an attacker on the network can statically configure their IP address to match the Asset...
Linux Distros Unpatched Vulnerability : CVE-2021-20110
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Due to Manage Engine Asset Explorer Agent 1.0.34 not validating HTTPS certificates, an attacker on the network can statically configure their IP address to matc...
CVE-2025-8309
There is an improper privilege management vulnerability identified in ManageEngine's Asset Explorer, ServiceDesk Plus, ServiceDesk Plus MSP, and SupportCenter Plus products by Zohocorp. This vulnerability impacts Asset Explorer versions before 7710, ServiceDesk Plus versions before 15110,...
CVE-2025-8309
There is an improper privilege management vulnerability identified in ManageEngine's Asset Explorer, ServiceDesk Plus, ServiceDesk Plus MSP, and SupportCenter Plus products by Zohocorp. This vulnerability impacts Asset Explorer versions before 7710, ServiceDesk Plus versions before 15110,...
CVE-2025-8309 User privilege escalation vulnerability
There is an improper privilege management vulnerability identified in ManageEngine's Asset Explorer, ServiceDesk Plus, ServiceDesk Plus MSP, and SupportCenter Plus products by Zohocorp. This vulnerability impacts Asset Explorer versions before 7710, ServiceDesk Plus versions before 15110,...
CVE-2025-8309
There is an improper privilege management vulnerability identified in ManageEngine's Asset Explorer, ServiceDesk Plus, ServiceDesk Plus MSP, and SupportCenter Plus products by Zohocorp. This vulnerability impacts Asset Explorer versions before 7710, ServiceDesk Plus versions before 15110,...
CVE-2025-8309 User privilege escalation vulnerability
There is an improper privilege management vulnerability identified in ManageEngine's Asset Explorer, ServiceDesk Plus, ServiceDesk Plus MSP, and SupportCenter Plus products by Zohocorp. This vulnerability impacts Asset Explorer versions before 7710, ServiceDesk Plus versions before 15110,...
CVE-2025-8309
CVE-2025-8309 affects ManageEngine AssetExplorer (versions before 7.7 Build 7710), ServiceDesk Plus (before 15.1 Build 15110), ServiceDesk Plus MSP (before 14.9 Build 14940), and SupportCenter Plus (before 14940). Root cause: overly permissive regular expression (regex) rules used in URL mapping ...
ZOHO多款产品 安全漏洞
ZOHO ManageEngine ServiceDesk Plus and others are products of ZOHO, Inc. ZOHO ManageEngine ServiceDesk Plus is a suite of IT service management software based on the ITIL architecture.ZOHO ManageEngine ZOHO ManageEngine ServiceDesk Plus is a set of IT service management software based on ITIL...
PT-2025-34135 · Manageengine · Assetexplorer +3
Name of the Vulnerable Software and Affected Versions: Asset Explorer versions prior to 7710 ServiceDesk Plus versions prior to 15110 ServiceDesk Plus MSP versions prior to 14940 SupportCenter Plus versions prior to 14940 Description: An improper privilege management issue exists in ManageEngine'...
CVE-2023-26601
Zoho ManageEngine ServiceDesk Plus through 14104, Asset Explorer through 6987, ServiceDesk Plus MSP before 14000, and Support Center Plus before 14000 allow Denial-of-Service DoS...