Unauthenticated Access to PDFGenerationServlet in Zoho ManageEngine Desktop Central before 10.0.483 Leads to Sensitive Information Disclosure

Unauthenticated Access to PDFGenerationServlet in Zoho ManageEngine Desktop Central before 10.0.483 Leads to Sensitive Information Disclosure

CVE-2020-8509 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Zoho ManageEngine Desktop Central before 10.0.483 allows unauthenticated users to access PDFGenerationServlet, leading to sensitive information disclosure.

Learn more about our Cis Benchmark Audit For Desktop Software.