This page lists security vulnerability fixes made in various releases of DDI Central and vulnerability details. Go to ManageEngine's Security Response Center to report vulnerabilities on ManageEngine products.
To receive security advisories for DDI Central, subscribe here
| CVE / ZVE ID | Synopsis | Severity | Fixed in version |
|---|---|---|---|
| CVE-2024-27311 | Arbitrary file writing via directory traversal | Medium | Build 4002 |
| CVE-2024-5471 | Unrestricted takeover of Node Agent servers | High | Build 4002 |
| CVE-2024-12686 | Remote command execution on Node Agent/DDI Console servers | Medium | Build 4002 |
| CVE-2026-12265 | Insufficient access control in HA failover endpoint leading to destructive PostgreSQL database operations | High | Build 6201 |
| CVE-2026-12266 | LDAP bind password exposure through insufficiently protected LDAP settings API | High | Build 6201 |
| CVE-2026-12267 | Command injection in Windows DNS Query Resolution Policy name field leading to remote code execution | High | Build 6201 |
| CVE-2026-12268 | PowerShell command injection in Windows DNS SPF/TXT record push leading to remote code execution | High | Build 6201 |
| CVE-2026-12264 | Arbitrary file write via HA Failover Config sync upload leading to remote code execution as root | High | Build 6201 |
| CVE-2026-12269 | Keepalived configuration injection through HA workflow leading to remote code execution as root | High | Build 6201 |
| CVE-2026-12571 | Authentication bypass in password-reset verification workflow leading to account takeover | High | Build 6201 |
| CVE-2026-12574 | Server-side HTML/JavaScript injection in analytics PDF generation leading to local file disclosure | High | Build 6201 |
| CVE-2026-12573 | Cisco IOS command injection via DHCP pool name leading to arbitrary commands on managed Cisco routers | High | Build 6201 |
| CVE-2026-12572 | SQL injection in HA replication username handling leading to command execution as the PostgreSQL service account | High | Build 6201 |