Security Advisory

CVE-2014-5445

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2014-12-04 17:00:00

Last updated 2024-08-06 11:41:49

Assigner mitre

State PUBLISHED

Description

Multiple absolute path traversal vulnerabilities in ZOHO ManageEngine Netflow Analyzer 8.6 through 10.2 and IT360 10.3 allow remote attackers or remote authenticated users to read arbitrary files via a full pathname in the schFilePath parameter to the (1) CSVServlet or (2) CReportPDFServlet servlet.

← Browse all CVEs View on cve.org ↗