7 matches found
CVE-2023-26600
ManageEngine ServiceDesk Plus through 14104, ServiceDesk Plus MSP through 14000, Support Center Plus through 14000, and Asset Explorer through 6987 allow privilege escalation via query reports...
ManageEngine ServiceDesk Plus MSP < 14.0 Build 14000
The version of ManageEngine ServiceDesk Plus MSP installed on the remote host is prior to 14.0 Build 14000. It is, therefore, affected by a vulnerability as referenced in the service-desk-mspCVE-2023-26600 advisory. - ManageEngine ServiceDesk Plus through 14104, ServiceDesk Plus MSP through 14000...
ManageEngine SupportCenter Plus < 14.0 Build 14000 Privilege Escalation
The version of ManageEngine SupportCenter Plus prior to 14.0 Build 14000 is running on the remote web server. It is, therefore, affected by the following: - A privilege escalation vulnerability in query reports. This vulnerability allows an attacker to gain access to restricted data in a Postgres...
CVE-2023-26600
creationtimestamp| type| source ---|---|--- 2023-03-06 22:13:01+00:00| seen| https://t.me/cibsecurity/59502 2025-03-06 16:07:03+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/6683...
CVE-2023-26600
ManageEngine ServiceDesk Plus through 14104, ServiceDesk Plus MSP through 14000, Support Center Plus through 14000, and Asset Explorer through 6987 allow privilege escalation via query reports...
CVE-2023-26600
ManageEngine ServiceDesk Plus through 14104, ServiceDesk Plus MSP through 14000, Support Center Plus through 14000, and Asset Explorer through 6987 allow privilege escalation via query reports...
CVE-2023-26600
CVE-2023-26600 affects ManageEngine ServiceDesk Plus (up to 14104), ServiceDesk Plus MSP (up to 14000), Support Center Plus (up to 14000), and Asset Explorer (up to 6987). A privilege-escalation flaw exists in the query reports component that can allow an attacker to access data restricted in the...