Enhancement: cves/2017/CVE-2017-11512.yaml by mp

cves/2017/CVE-2017-11512.yaml

@@ -1,16 +1,16 @@
 id: CVE-2017-11512
 
 info:
-  name: ManageEngine ServiceDesk - Arbitrary File Retrieval
+  name: ManageEngine ServiceDesk 9.3.9328 - Arbitrary File Retrieval
   author: 0x_Akoko
   severity: high
   description: |
-    The ManageEngine ServiceDesk 9.3.9328 is vulnerable to an arbitrary file retrieval due to improper restrictions of the pathname used in the name parameter for the download-snapshot path. An unauthenticated remote attacker can use this vulnerability to download arbitrary files.
+    ManageEngine ServiceDesk 9.3.9328 is vulnerable to an arbitrary file retrieval due to improper restrictions of the pathname used in the name parameter for the download-snapshot path. An unauthenticated remote attacker can use this vulnerability to download arbitrary files.
   reference:
     - https://exploit.kitploit.com/2017/11/manageengine-servicedesk-cve-2017-11512.html
     - https://www.cvedetails.com/cve/CVE-2017-11512
     - https://www.tenable.com/security/research/tra-2017-31
-    - http://www.securityfocus.com/bid/101789
+    - https://nvd.nist.gov/vuln/detail/CVE-2017-11512
   classification:
     cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
     cvss-score: 7.5
@@ -36,3 +36,5 @@ requests:
           - "fonts"
           - "extensions"
         condition: and
+
+# Enhanced by mp on 2022/06/09