CVE-2020-8540 is a vulnerability in Zoho Corp Manageengine Desktop Central
Published on March 11, 2020

An XML external entity (XXE) vulnerability in Zoho ManageEngine Desktop Central before the 07-Mar-2020 update allows remote unauthenticated users to read arbitrary files or conduct server-side request forgery (SSRF) attacks via a crafted DTD in an XML request.

NVD

Products Associated with CVE-2020-8540

Want to know whenever a new CVE is published for Zoho Corp Manageengine Desktop Central? stack.watch will email you.

Zoho Corp Manageengine Desktop Central

Exploit Probability

EPSS

24.12%

Percentile

95.98%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2020-8540 is a vulnerability in Zoho Corp Manageengine Desktop CentralPublished on March 11, 2020

Products Associated with CVE-2020-8540

Exploit Probability

CVE-2020-8540 is a vulnerability in Zoho Corp Manageengine Desktop Central
Published on March 11, 2020