CVE-2021-20081 – Incomplete List of Disallowed Inputs in ManageEngine ServiceDesk Plus before version 11205 …

Vuln ID: CVE-2021-20081

Published:  2021-06-10  12:15:07Z

Description: Incomplete List of Disallowed Inputs in ManageEngine ServiceDesk Plus before version 11205 allows a remote, authenticated attacker to execute arbitrary commands with SYSTEM privileges.

Source: NVD.NIST.GOV