PT-2020-12193 · Zoho · Zoho Manageengine Opmanager
Published
2020-03-13
·
Updated
2021-07-21
·
CVE-2020-10541
CVSS v3.1
9.8
Critical
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Zoho ManageEngine OpManager versions prior to 12.5.108
Description
The issue allows remote code execution via a specially crafted "Mail Server Settings" v1 API request.
Recommendations
For versions prior to 12.5.108, update to version 12.5.108 or later to resolve the issue.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Zoho Manageengine Opmanager