Security Advisory

CVE-2017-11561

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2019-05-23 15:32:59

Last updated 2024-08-05 18:12:40

Assigner mitre

State PUBLISHED

Description

An issue was discovered in ZOHO ManageEngine OpManager 12.2. An authenticated user can upload any file they want to share in the "Group Chat" or "Alarm" section. This functionality can be abused by a malicious user by uploading a web shell.

← Browse all CVEs View on cve.org ↗