The Custom Report import function in Zoho ManageEngine Firewall Analyzer prior to 12.3 Build 123224 is vulnerable to XML External Entity (XXE) Injection.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
zohocorp manageengine firewall analyzer 7.2 |
||
zohocorp manageengine firewall analyzer 8.5 |
||
zohocorp manageengine firewall analyzer 12.2 |
||
zohocorp manageengine firewall analyzer 12.3 |
||
zohocorp manageengine firewall analyzer 7.4 |
||
zohocorp manageengine firewall analyzer 8.0 |
||
zohocorp manageengine firewall analyzer 7.6 |
||
zohocorp manageengine firewall analyzer 8.1 |
||
zohocorp manageengine firewall analyzer 8.3 |
||
zohocorp manageengine firewall analyzer 12.0 |
Vulmon