Lucene search
China National Vulnerability DatabaseCNVD-2021-85880HistoryNov 09, 2021 - 12:00 a.m.
ServiceTonic Improper Access Control Vulnerability
2021-11-0900:00:00
China National Vulnerability Database
www.cnvd.org.cn
6
servicetonic
itil-compliant
service desk
enterprise services
vulnerability
unauthorized access
login form
EPSS
0.003
Percentile
71.1%
ServiceTonic is an ITIL-compliant service desk and enterprise services software. serviceTonic versions prior to 9.0.35937 are vulnerable to an improper access control vulnerability. An attacker could exploit this vulnerability to gain unauthorized access to the system via the login form, allowing login without a password.
Related
prion
prion
Design/Logic Flaw
2021-11-08 15:15:00
cvelist
cvelist
CVE-2021-28024
2021-11-08 14:29:04
nvd
nvd
CVE-2021-28024
2021-11-08 15:15:07
cve
cve
CVE-2021-28024
2021-11-08 15:15:07