CVE-2018-11808 is a vulnerability in Zoho Corp Manageengine Applications Manager
Published on June 6, 2018

Incorrect Access Control in CustomFieldsFeedServlet in Zoho ManageEngine Applications Manager Version 13 before build 13740 allows an attacker to delete any file and read certain files on the server in the context of the user (which by default is "NT AUTHORITY / SYSTEM") by sending a specially crafted request to the server.

NVD

Products Associated with CVE-2018-11808

Want to know whenever a new CVE is published for Zoho Corp Manageengine Applications Manager? stack.watch will email you.

Zoho Corp Manageengine Applications Manager

Exploit Probability

EPSS

4.23%

Percentile

88.57%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2018-11808 is a vulnerability in Zoho Corp Manageengine Applications ManagerPublished on June 6, 2018

Products Associated with CVE-2018-11808

Exploit Probability

CVE-2018-11808 is a vulnerability in Zoho Corp Manageengine Applications Manager
Published on June 6, 2018