CVE-2019-8394 - Zoho ManageEngine ServiceDesk Plus (SDP) File Upload Vulnerability
Project:Zoho
Product:ManageEngine
Date Added:2021-11-03Due Date:2022-05-03
Vulnerability Name
Zoho ManageEngine ServiceDesk Plus (SDP) File Upload Vulnerability
Description
Zoho ManageEngine ServiceDesk Plus (SDP) contains an unspecified vulnerability that allows remote users to upload files via login page customization.
Known To Be Used in Ransomware Campaigns?
Unknown
Action
Apply updates per vendor instructions.
Additional Notes
https://nvd.nist.gov/vuln/detail/CVE-2019-8394