CVE-2021-20080

Insufficient output sanitization in ManageEngine ServiceDesk Plus before version 11200 and ManageEngine AssetExplorer before version 6800 allows a remote, unauthenticated attacker to conduct persistent cross-site scripting (XSS) attacks by uploading a crafted XML asset file.

CVSS v3.0 6.1 MEDIUM
CVSS v2.0 4.3 MEDIUM

6.1^/10

CVSS v3.0 : MEDIUM

V3 Legend

Vector :

Exploitability : 2.8 / Impact : 2.7

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction REQUIRED

Confidentiality Impact LOW

Integrity Impact LOW

Availability Impact NONE

Scope CHANGED

4.3^/10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:N/AC:M/Au:N/C:N/I:P/A:N

Exploitability : 8.6 / Impact : 2.9

Access Vector NETWORK

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact NONE

Integrity Impact PARTIAL

Availability Impact NONE

References

Link	Resource
https://www.tenable.com/security/research/tra-2021-11	Exploit Third Party Advisory

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:8.1:-::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:8.2:-::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:8.2:8201::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:8.2:8202::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:8.2:8203::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:8.2:8204::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:8.2:8205::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:8.2:8206::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:8.2:8207::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:8.2:8208::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:8.2:8209::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:8.2:8217::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:8.2:8216::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:8.2:8215::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:8.2:8214::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:8.2:8213::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:8.2:8212::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:8.2:8211::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:8.2:8210::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9012::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9011::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9010::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9009::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9008::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9007::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9006::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9005::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9004::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9003::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9002::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9001::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9000::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:-::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.1:-::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.1:9100::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.1:9101::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.1:9102::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.1:9103::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.1:9104::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.1:9105::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.1:9106::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9049::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9048::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9047::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9046::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9045::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9044::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9043::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9042::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9041::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9040::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9039::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9038::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9037::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9036::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9035::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9034::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9033::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9032::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9031::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9030::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9029::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9028::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9027::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9026::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9025::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9024::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9023::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9022::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9021::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9020::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9019::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9018::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9017::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9016::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9014::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9013::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.1:9107::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.1:9108::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.1:9109::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.1:9110::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.1:9111::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.1:9112::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.1:9113::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.1:9114::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.1:9115::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.1:9116::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.1:9117::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.1:9118::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.1:9119::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.1:9120::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.1:9121::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:-::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9200::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9201::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9202::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9203::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9204::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9205::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9206::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9207::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9208::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9209::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9210::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9211::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9212::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9213::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9214::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9215::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9216::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9217::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9218::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9219::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9220::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9221::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9222::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9223::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9224::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9225::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9226::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9227::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9228::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9229::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9230::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9231::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9232::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9233::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9234::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9235::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9236::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9237::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9238::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9239::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9240::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9241::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9242::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:-::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9300::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9301::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9302::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9303::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9304::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9305::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9306::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9307::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9308::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9309::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9310::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9311::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9312::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9313::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9314::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9315::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9316::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9317::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9318::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9319::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9320::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9321::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9322::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9323::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9324::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9325::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9326::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9327::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.0.0:10021::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.0.0:10020::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.0.0:10019::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.0.0:10018::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.0.0:10017::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.0.0:10016::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.0.0:10015::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.0.0:10014::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.0.0:10013::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.0.0:10012::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.0.0:10011::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.0.0:10010::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.0.0:10009::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.0.0:10008::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.0.0:10007::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.0.0:10006::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.0.0:10005::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.0.0:10004::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.0.0:10003::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.0.0:10002::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.0.0:10001::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.0.0:10000::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.0.0:-::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:-::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11111::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11110::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11109::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11108::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11107::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11106::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11105::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11104::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11103::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11102::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11101::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11100::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11114::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11113::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11112::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9328::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9329::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9330::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9331::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9332::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9333::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9334::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9335::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9336::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.4:-::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.4:9400::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.4:9401::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.4:9402::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.4:9403::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.4:9404::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.4:9405::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.4:9406::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.4:9407::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.4:9408::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.4:9409::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.4:9410::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.4:9411::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.4:9412::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.4:9413::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.4:9414::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.4:9415::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.4:9416::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.4:9417::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.4:9418::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.4:9419::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.4:9420::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.4:9421::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.4:9422::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.4:9423::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.4:9424::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.4:9425::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.4:9426::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.4:9427::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.5:-::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.5:10500::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.5:10501::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.5:10502::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.5:10503::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.5:10504::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.5:10505::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.5:10506::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.5:10507::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.5:10508::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.5:10509::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.5:10510::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.5:10511::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.5:10512::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.5:10513::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.5:10514::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.0:-::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.0:11000::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.0:11001::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.0:11002::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.0:11003::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.0:11004::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.0:11005::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.0:11006::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.0:11007::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.0:11008::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.0:11009::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.0:11010::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11115::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11116::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11117::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.0:::::::*
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:build11118::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:build11119::::::

Information

Published : 2021-04-09 11:15

Updated : 2021-04-19 11:49

NVD link : CVE-2021-20080

Mitre link : CVE-2021-20080

JSON object : View

CWE

CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Products Affected

zohocorp

manageengine_servicedesk_plus

6.1 /10

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction REQUIRED

Confidentiality Impact LOW

Integrity Impact LOW

Availability Impact NONE

Scope CHANGED

4.3 /10

Access Vector NETWORK

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact NONE

Integrity Impact PARTIAL

Availability Impact NONE

JSON object

Attach tags to CVE-2021-20080

6.1^/10

4.3^/10

Attach tags to `CVE-2021-20080`