Description

Zoho ManageEngine ADManager Plus version 7110 and prior is vulnerable to path traversal which allows copying of files from one directory to another.

Related CPE's

a

zohocorp

manageengine_admanager_plus

6

References

https://www.manageengine.com

Product

https://www.manageengine.com/products/ad-manager/release-notes.html#7111

Release NotesVendor Advisory

Weaknesses

[email protected]

Primary
CWE-22

CVSS impact metrics

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

5.3 · Medium

  • CVSS V3.1

  • CVSS V3.0

  • CVSS V2.0

Information

Source identifier

[email protected]

Vulnerability status

Analyzed

Published

2021-10-07T16:15:08.500

3 years ago

Last modified

2021-10-15T14:28:14.613

3 years ago