Signature Detail
This site is deprecated. Please CLICK HERE for latest updates
Short Name |
HTTP:DIR:ZOHO-MEOMGR-MUL-DIRTRV |
|---|---|
Severity |
Minor |
Recommended |
No |
Recommended Action |
Drop |
Category |
HTTP |
Keywords |
Zoho ManageEngine OpManager Multiple Directory Traversal |
Release Date |
2020/06/25 |
Update Number |
3293 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+ |
HTTP: Zoho ManageEngine OpManager Multiple Directory Traversal
This signature detects attempts to exploit a known vulnerability against Zoho ManageEngine OpManager. A successful attack can lead to directory traversal and arbitrary code execution.
Extended Description
Zoho ManageEngine OpManager Stable build before 124196 and Released build before 125125 allows an unauthenticated attacker to read arbitrary files on the server by sending a crafted request.
Affected Products
- Zohocorp manageengine_opmanager 12.3
- Zohocorp manageengine_opmanager 12.4
- Zohocorp manageengine_opmanager 12.5
References