Vulnerability feed

Vulnerability

CVE-2017-11512

Reference to the description:: https://nvd.nist.gov/vuln/detail/CVE-2017-11512
Description:: The ManageEngine ServiceDesk 9.3.9328 is vulnerable to arbitrary file downloads due to improper restrictions of the pathname used in the name parameter for the download-snapshot URL. An unauthenticated remote attacker can use this vulnerability to download arbitrary files.
Last updated date:: 10/09/2019

Reports

alt

ACTIVELY EXPLOITED

Type:: exploitation
Confidence:: HIGH
Date of publishing:: 11/11/2021
Reference url to background: https://www.marketscreener.com/quote/stock/CHECK-POINT-SOFTWARE-TECH-4858/news/October-2021-s-Most-Wanted-Malware-Trickbot-Takes-Top-Spot-for-Fifth-Time-36983789/

Type:: exploitation
Confidence:: HIGH
Date of publishing:: 12/01/2021
Reference url to background: https://blog.checkpoint.com/2022/01/12/december-2021s-most-wanted-malware-trickbot-emotet-and-the-log4j-plague/

Type:: exploitation
Confidence:: HIGH
Date of publishing:: 06/09/2022
Reference url to background: https://www.bloomberg.com/press-releases/2022-06-09/may-2022-s-most-wanted-malware-snake-keylogger-returns-to-the-top-ten-after-a-long-absence

Vulnerability Feed Contributors About Blog

@inTheWild

©2023 |