CVE-2011-2756
Manageengine Servicedesk Plus - Authentication Bypass
Title source: ruleDescription
FileDownload.jsp in ManageEngine ServiceDesk Plus 8.0 before Build 8012 does not require authentication, which allows remote attackers to read files from a specific directory via unspecified vectors.
Scores
EPSS
0.0032
EPSS Percentile
54.3%
Classification
CWE
CWE-287
Status
draft
Affected Products (1)
manageengine/servicedesk_plus
Timeline
Published
Jul 17, 2011
Tracked Since
Feb 18, 2026