CVE-2019-15046

Zoho ManageEngine ServiceDesk Plus 10 before 10509 allows unauthenticated sensitive information leakage during Fail Over Service (FOS) replication, aka SD-79989.
Configurations

Configuration 1 (hide)

cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:*:*:*:*:*:*:*:*

History

21 Nov 2024, 04:27

Type Values Removed Values Added
References () http://packetstormsecurity.com/files/154183/Zoho-Corporation-ManageEngine-ServiceDesk-Plus-Information-Disclosure.html - Exploit, Third Party Advisory, VDB Entry () http://packetstormsecurity.com/files/154183/Zoho-Corporation-ManageEngine-ServiceDesk-Plus-Information-Disclosure.html - Exploit, Third Party Advisory, VDB Entry
References () http://seclists.org/fulldisclosure/2019/Aug/17 - Exploit, Mailing List, Third Party Advisory () http://seclists.org/fulldisclosure/2019/Aug/17 - Exploit, Mailing List, Third Party Advisory
References () https://seclists.org/bugtraq/2019/Aug/37 - Exploit, Mailing List, Third Party Advisory () https://seclists.org/bugtraq/2019/Aug/37 - Exploit, Mailing List, Third Party Advisory
References () https://www.manageengine.com/products/service-desk/readme.html#10509 - Vendor Advisory () https://www.manageengine.com/products/service-desk/readme.html#10509 - Vendor Advisory

Information

Published : 2019-08-14 15:15

Updated : 2024-11-21 04:27


NVD link : CVE-2019-15046

Mitre link : CVE-2019-15046

CVE.ORG link : CVE-2019-15046


JSON object : View

Products Affected

zohocorp

  • manageengine_servicedesk_plus
CWE
CWE-287

Improper Authentication