Desktop Central Security Vulnerabilities and Issues — Desktop Central CVE List

Lucene search

ManageengineDesktop Central

3 matches found

CVE•added 2021/09/21 1:15 p.m.•738 views

CVE-2021-28960

Zoho ManageEngine Desktop Central before build 10.0.683 allows unauthenticated command injection due to improper handling of an input command in on-demand operations.

9.8CVSS9.7AI score0.07305EPSS

CVE•added 2017/09/28 1:29 a.m.•93 views

CVE-2015-8249

The FileUploadServlet class in ManageEngine Desktop Central 9 before build 91093 allows remote attackers to upload and execute arbitrary files via the ConnectionId parameter.

10CVSS9.6AI score0.81787EPSS

Web

CVE•added 2014/12/05 3:59 p.m.•58 views

CVE-2014-3996

SQL injection vulnerability in the LinkViewFetchServlet servlet in ManageEngine Desktop Central (DC) and Desktop Central Managed Service Providers (MSP) edition before 9 build 90043, Password Manager Pro (PMP) and Password Manager Pro Managed Service Providers (MSP) edition before 7 build 7003, IT3...

7.5CVSS8.1AI score0.71162EPSS