Critical severity9.8NVD Advisory· Published Mar 11, 2020· Updated Jun 17, 2026
CVE-2020-8540
CVE-2020-8540
Description
An XML external entity (XXE) vulnerability in Zoho ManageEngine Desktop Central before the 07-Mar-2020 update allows remote unauthenticated users to read arbitrary files or conduct server-side request forgery (SSRF) attacks via a crafted DTD in an XML request.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Zoho/ManageEngine Desktop Centraldescription
- Range: <07-Mar-2020
Patches
Vulnerability mechanics
References
1- www.manageengine.com/products/desktop-central/xxe-vulnerability.htmlnvdVendor Advisory
News mentions
0No linked articles in our index yet.