Yazhi Wang

**Name of the Vulnerable Software and Affected Versions** Windows (affected versions not specified) **Description** The issue is related to errors in handling input data in the implementation of the Pragmatic General Multicast (PGM) protocol in Windows. This can allow a remote attacker to execute arbitrary code by sending a specially crafted file. The vulnerability enables remote attackers to execute arbitrary code and affect the system. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Zoho ManageEngine OpManager versions prior to 125144 **Description** The issue allows directory traversal validation to be bypassed when the `cachestart` parameter is used. This can lead to information disclosure. **Recommendations** For versions prior to 125144, update to version 125144 or later to resolve the issue. As a temporary workaround, consider restricting access to the `cachestart` parameter to minimize the risk of exploitation.