Security Advisory

CVE-2014-0344

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2014-03-29 20:00:00

Last updated 2024-08-06 09:13:09

Assigner certcc

State PUBLISHED

Description

Properties.do in ZOHO ManageEngine OpStor before build 8500 does not properly check privilege levels, which allows remote authenticated users to obtain Admin access by using the name parameter in conjunction with a true value of the edit parameter.

← Browse all CVEs View on cve.org ↗