CVE-2008-0476

ManageEngine Applications Manager 8.1 build 8100 does not check authentication for monitorType.do and unspecified other pages, which allows remote attackers to obtain sensitive information and change settings via unspecified vectors. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Configurations

Configuration 1 (hide)

cpe:2.3:a:manageengine:applications_manager:8.1_build_8100:*:*:*:*:*:*:*

History

21 Nov 2024, 00:42

Type Values Removed Values Added
References () http://secunia.com/advisories/28332 - Vendor Advisory () http://secunia.com/advisories/28332 - Vendor Advisory
References () http://www.securityfocus.com/bid/27443 - () http://www.securityfocus.com/bid/27443 -
References () https://exchange.xforce.ibmcloud.com/vulnerabilities/39915 - () https://exchange.xforce.ibmcloud.com/vulnerabilities/39915 -

Information

Published : 2008-01-29 20:00

Updated : 2024-11-21 00:42


NVD link : CVE-2008-0476

Mitre link : CVE-2008-0476

CVE.ORG link : CVE-2008-0476


JSON object : View

Products Affected

manageengine

  • applications_manager
CWE
CWE-287

Improper Authentication