CVE-2008-0476
First published: Tue Jan 29 2008(Updated: )
ManageEngine Applications Manager 8.1 build 8100 does not check authentication for monitorType.do and unspecified other pages, which allows remote attackers to obtain sensitive information and change settings via unspecified vectors. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| ManageEngine Applications Manager | =8.1_build_8100 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2008-0476?
CVE-2008-0476 has a medium severity rating due to its potential for unauthorized access to sensitive information.
How do I fix CVE-2008-0476?
To fix CVE-2008-0476, ensure that proper authentication checks are implemented for affected pages.
What software is affected by CVE-2008-0476?
CVE-2008-0476 specifically affects ManageEngine Applications Manager version 8.1 build 8100.
What types of attacks are possible with CVE-2008-0476?
Attackers can utilize CVE-2008-0476 to remotely obtain sensitive information and alter settings without proper authorization.
Is there a patch available for CVE-2008-0476?
Check with ManageEngine for any available patches or updates addressing CVE-2008-0476 to mitigate the vulnerability.
- agent/softwarecombine
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/references
- agent/last-modified-date
- agent/weakness
- agent/author
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/nvd-historical
- vendor/manageengine
- canonical/manageengine applications manager
- version/manageengine applications manager/8.1_build_8100