Unrated severityNVD Advisory· Published Aug 23, 2024· Updated Aug 23, 2024

Stored XSS

CVE-2024-41150

Description

An Stored Cross-site Scripting vulnerability in request module affects Zohocorp ManageEngine ServiceDesk Plus, ServiceDesk Plus MSP and SupportCenter Plus.This issue affects ServiceDesk Plus versions: through 14810; ServiceDesk Plus MSP: through 14800; SupportCenter Plus: through 14800.

Affected products

Zohocorp/ManageEngine ServiceDesk Plus MSPllm-fuzzy
Range: <=14810
Zohocorp/SupportCentre Plusllm-fuzzy
Range: <=14800
Manageengine/Servicedesk Pluscpe-rescue2 versions
0+ 1 more
- (no CPE)range: 0
- (no CPE)range: 0
Manageengine/Supportcenter Pluscpe-rescue
Range: 0

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.manageengine.com/products/service-desk/CVE-2024-41150.htmlmitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000