Zoho ManageEngine OpManager before 12.4.181 Exposure of Sensitive Information to an Unauthorized Actor Vulnerability

Summary

Zoho ManageEngine OpManager before 12.4.181 suffers from exposure of sensitive information to an unauthorized actor vulnerability.

 

 

 

Credit:

The information has been provided by Vendor

The original article can be found at:https://www.manageengine.com/network-monitoring/help/read-me-complete.html#124181

 

 


Details

In Zoho ManageEngine OpManager before 12.4.181, an unauthenticated remote attacker can send a specially crafted URI to read arbitrary files.

 

Vulnerable Systems:

Zoho ManageEngine OpManager before 12.4.181

 

CVE Information:

CVE-2020-11527

 

Disclosure Timeline:
Published Date:4/4/2020

 

Categories: FeaturedNews