Security Advisory

CVE-2017-11740

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2019-05-23 15:21:10

Last updated 2024-08-05 18:19:39

Assigner mitre

State PUBLISHED

Description

In Zoho ManageEngine Application Manager 13.1 Build 13100, the administrative user has the ability to upload files/binaries that can be executed upon the occurrence of an alarm. An attacker can abuse this functionality by uploading a malicious script that can be executed on the remote system.

← Browse all CVEs View on cve.org ↗