A directory traversal vulnerability exists in the uploadMib functionality of ManageEngine OpManager 12.7.258. A specially crafted HTTP request can lead to arbitrary file creation. An attacker can send a malicious MiB file to trigger this vulnerability.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
zohocorp manageengine opmanager |
||
zohocorp manageengine opmanager 12.7 |
||
zohocorp manageengine oputils |
||
zohocorp manageengine oputils 12.7 |
||
zohocorp manageengine firewall analyzer 12.7 |
||
zohocorp manageengine firewall analyzer |
||
zohocorp manageengine netflow analyzer 12.7 |
||
zohocorp manageengine netflow analyzer |
||
zohocorp manageengine network configuration manager 12.7 |
||
zohocorp manageengine network configuration manager |
||
zohocorp manageengine opmanager msp 12.7 |
||
zohocorp manageengine opmanager msp |
||
zohocorp manageengine opmanager plus 12.7 |
||
zohocorp manageengine opmanager plus |