CVE-2021-31159

Zoho ManageEngine ServiceDesk Plus MSP before 10519 is vulnerable to a User Enumeration bug due to improper error-message generation in the Forgot Password functionality, aka SDPMSP-15732.

CVSS v3.0 5.3 MEDIUM
CVSS v2.0 5.0 MEDIUM

5.3^/10

CVSS v3.0 : MEDIUM

V3 Legend

Vector :

Exploitability : 3.9 / Impact : 1.4

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact LOW

Integrity Impact NONE

Availability Impact NONE

Scope UNCHANGED

5.0^/10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:N/AC:L/Au:N/C:P/I:N/A:N

Exploitability : 10.0 / Impact : 2.9

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact NONE

Availability Impact NONE

References

Link	Resource
https://www.manageengine.com/products/service-desk-msp/readme.html#10519	Release Notes Vendor Advisory
https://www.manageengine.com	Product
http://packetstormsecurity.com/files/163192/Zoho-ManageEngine-ServiceDesk-Plus-9.4-User-Enumeration.html	Exploit Third Party Advisory VDB Entry
https://github.com/ricardojoserf/CVE-2021-31159	Exploit Third Party Advisory

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp::::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10500::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10501::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10502::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10503::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10504::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10505::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10506::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10507::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10508::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10509::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10515::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10516::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10517::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10518::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10510::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10511::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10512::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10513::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10514::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:8001::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:8000::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:8002::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:8003::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:8004::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:8100::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:8101::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:8102::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:8103::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:8104::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:8105::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:8200::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:8201::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9206::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9207::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9208::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9209::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9210::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9300::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9301::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:8202::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:8203::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:8204::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:8205::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:8206::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:8207::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:8208::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:8209::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:8210::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:8211::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:8300::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:8301::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:8302::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:8303::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:8304::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:8305::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:8306::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:8307::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:8308::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:8309::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:8310::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:8311::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:8312::::::
	cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9000::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9001::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9002::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9003::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9004::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9005::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9006::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9007::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9008::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9009::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9201::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9203::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9204::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9205::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9418::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9419::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9420::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9421::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9422::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9423::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9424::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9425::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9426::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9427::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9302::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9303::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9304::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9305::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9306::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9307::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9308::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9400::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9401::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9402::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9403::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9404::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9405::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9406::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9407::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9408::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9409::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9410::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9411::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9412::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9413::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9414::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9415::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9416::::::
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9417::::::

Information

Published : 2021-06-16 06:15

Updated : 2021-07-09 05:49

NVD link : CVE-2021-31159

Mitre link : CVE-2021-31159

JSON object : View

CWE

CWE-209

Generation of Error Message Containing Sensitive Information

Products Affected

zohocorp

manageengine_servicedesk_plus_msp

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "https://www.manageengine.com/products/service-desk-msp/readme.html#10519", "name": "https://www.manageengine.com/products/service-desk-msp/readme.html#10519", "tags": ["Release Notes", "Vendor Advisory"], "refsource": "CONFIRM"}, {"url": "https://www.manageengine.com", "name": "https://www.manageengine.com", "tags": ["Product"], "refsource": "MISC"}, {"url": "http://packetstormsecurity.com/files/163192/Zoho-ManageEngine-ServiceDesk-Plus-9.4-User-Enumeration.html", "name": "http://packetstormsecurity.com/files/163192/Zoho-ManageEngine-ServiceDesk-Plus-9.4-User-Enumeration.html", "tags": ["Exploit", "Third Party Advisory", "VDB Entry"], "refsource": "MISC"}, {"url": "https://github.com/ricardojoserf/CVE-2021-31159", "name": "https://github.com/ricardojoserf/CVE-2021-31159", "tags": ["Exploit", "Third Party Advisory"], "refsource": "MISC"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "Zoho ManageEngine ServiceDesk Plus MSP before 10519 is vulnerable to a User Enumeration bug due to improper error-message generation in the Forgot Password functionality, aka SDPMSP-15732."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "CWE-209"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2021-31159", "ASSIGNER": "cve@mitre.org"}}, "impact": {"baseMetricV2": {"cvssV2": {"version": "2.0", "baseScore": 5.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "NONE", "confidentialityImpact": "PARTIAL"}, "severity": "MEDIUM", "acInsufInfo": false, "impactScore": 2.9, "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}, "baseMetricV3": {"cvssV3": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 5.3, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "LOW"}, "impactScore": 1.4, "exploitabilityScore": 3.9}}, "publishedDate": "2021-06-16T13:15Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndIncluding": "9.4", "versionStartIncluding": "8.0"}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10500:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10501:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10502:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10503:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10504:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10505:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10506:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10507:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10508:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10509:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10515:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10516:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10517:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10518:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10510:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10511:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10512:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10513:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10514:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:8001:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:8000:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:8002:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:8003:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:8004:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:8100:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:8101:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:8102:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:8103:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:8104:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:8105:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:8200:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:8201:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9206:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9207:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9208:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9209:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9210:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9300:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9301:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:8202:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:8203:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:8204:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:8205:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:8206:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:8207:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:8208:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:8209:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:8210:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:8211:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:8300:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:8301:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:8302:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:8303:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:8304:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:8305:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:8306:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:8307:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:8308:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:8309:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:8310:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:8311:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:8312:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9000:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9001:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9002:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9003:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9004:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9005:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9006:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9007:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9008:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9009:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9201:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9203:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9204:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9205:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9418:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9419:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9420:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9421:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9422:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9423:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9424:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9425:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9426:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9427:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9302:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9303:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9304:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9305:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9306:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9307:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9308:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9400:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9401:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9402:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9403:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9404:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9405:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9406:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9407:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9408:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9409:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9410:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9411:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9412:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9413:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9414:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9415:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9416:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:9417:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2021-07-09T12:49Z"}

5.3 /10

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact LOW

Integrity Impact NONE

Availability Impact NONE

Scope UNCHANGED

5.0 /10

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact NONE

Availability Impact NONE

JSON object

Attach tags to CVE-2021-31159

5.3^/10

5.0^/10

Attach tags to `CVE-2021-31159`