Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
zohocorp manageengine opmanager 12.4 vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2020-12116
Zoho ManageEngine OpManager Stable build prior to 124196 and Released build prior to 125125 allows an unauthenticated malicious user to read arbitrary files on the server by sending a crafted request.
Zohocorp Manageengine Opmanager
Zohocorp Manageengine Opmanager 12.4
Zohocorp Manageengine Opmanager 12.5
1 Github repository
5
CVSSv2
CVE-2020-11527
In Zoho ManageEngine OpManager prior to 12.4.181, an unauthenticated remote attacker can send a specially crafted URI to read arbitrary files.
Zohocorp Manageengine Opmanager
Zohocorp Manageengine Opmanager 12.4
7.5
CVSSv2
CVE-2019-17602
An issue exists in Zoho ManageEngine OpManager prior to 12.4 build 124089. The OPMDeviceDetailsServlet servlet is prone to SQL injection. Depending on the configuration, this vulnerability could be exploited unauthenticated or authenticated.
Zohocorp Manageengine Opmanager 12.4
Zohocorp Manageengine Opmanager
7.2
CVSSv2
CVE-2019-17421
Incorrect file permissions on the packaged Nipper executable file in Zoho ManageEngine OpManager 12.4.072 and Firewall Analyzer 12.4.072 allow local users to elevate privileges to root by overwriting this file with a malicious payload.
Zohocorp Manageengine Firewall Analyzer 12.4
Zohocorp Manageengine Opmanager 12.4
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
encryption
CVE-2024-4331
CVE-2024-26925
arbitrary code
CVE-2006-4304
CVE-2024-25458
CVE-2024-27077
reflected XSS
CVE-2024-4059
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started