Manageengine Desktop Central — known CVE vulnerabilities
Every CVE whose affected-product data names Manageengine Desktop Central, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2015-8249 — CVSS 9.8 (critical): The FileUploadServlet class in ManageEngine Desktop Central 9 before build 91093 allows remote attackers to upload and execute arbitrary…
CVE-2021-28960 — CVSS 9.8 (critical): Zoho ManageEngine Desktop Central before build 10.0.683 allows unauthenticated command injection due to improper handling of an input…
CVE-2014-3996 — CVSS 7.5 (high): SQL injection vulnerability in the LinkViewFetchServlet servlet in ManageEngine Desktop Central (DC) and Desktop Central Managed Service…