Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMitreCVELIST:CVE-2017-16924
HistoryFeb 19, 2018 - 4:00 a.m.

CVE-2017-16924

2018-02-1904:00:00
mitre
www.cve.org
4

AI Score

9.2

Confidence

High

EPSS

0.028

Percentile

90.7%

JSON

Remote Information Disclosure and Escalation of Privileges in ManageEngine Desktop Central MSP 10.0.137 allows attackers to download unencrypted XML files containing all data for configuration policies via a predictable /client-data/<client_id>/collections/##/usermgmt.xml URL, as demonstrated by passwords and Wi-Fi keys. This is fixed in build 100157.

Related

openvas 1
prion 1
cve 1
nvd 1
openvas
openvas
ManageEngine Desktop Central <= 10.0.137 'usermgmt.xml' Information Disclosure Vulnerability
2018-02-23 00:00:00
prion
prion
Information disclosure
2018-02-19 04:29:00
cve
cve
CVE-2017-16924
2018-02-19 04:29:00
nvd
nvd
CVE-2017-16924
2018-02-19 04:29:00

AI Score

9.2

Confidence

High

EPSS

0.028

Percentile

90.7%

JSON
Related for CVELIST:CVE-2017-16924
openvas1prion1cve1nvd1