CVE-2019-8394 | Cybersecurity Alerts | Nexus IT Services, LLC

← Back to Cybersecurity Alerts

CVE-2019-8394

Zoho | ManageEngineAdded 2021-11-03Remediation Deadline 2022-05-03

Zoho ManageEngine ServiceDesk Plus (SDP) File Upload Vulnerability

Zoho ManageEngine ServiceDesk Plus (SDP) contains an unspecified vulnerability that allows remote users to upload files via login page customization.

Required Action

Apply updates per vendor instructions.

Weakness Classification

CWE-434

References

https://nvd.nist.gov/vuln/detail/CVE-2019-8394