CVE-2008-0476

ManageEngine Applications Manager 8.1 build 8100 - Unauthenticated Sensitive Information Exposure

Title source: llm
STIX 2.1

Description

ManageEngine Applications Manager 8.1 build 8100 does not check authentication for monitorType.do and unspecified other pages, which allows remote attackers to obtain sensitive information and change settings via unspecified vectors. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

References (3)

Core 3
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/39915
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/27443
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/28332

Scores

EPSS 0.0125
EPSS Percentile 65.6%

Details

CWE
CWE-287
Status published
Products (1)
manageengine/applications_manager 8.1_build_8100
Published Jan 29, 2008
Tracked Since Feb 18, 2026