CVE-2020-10541

Remote Code Execution (RCE) vulnerability in Mail Server Settings v1 APIs

 

Vulnerability Details
Impact CVSS V3 rating: NA
Reported 13th March 2020
Reported by Jason Nordenstam
Fixed 13th March 2020
Affected Builds Builds till 124171
Fixed in Build 124172
Overview Remote Code Execution (RCE) vulnerability in Mail Server Settings
Recommended Fix Upgrade to OpManager Plus Version 12.4.172 or above.

 

Description

The obsolete code causing Remote Code Execution (RCE) vulnerability in Mail Server Settings v1 APIs have been removed.

We recommend that you upgrade to OpManager Plus Version 12.4.172 or contact our support team at opmanagerplus-support@manageengine.com to fix this issue.

Source and Acknowledgements

Find out more about CVE-2020-10541 from the CVE dictionary.

Need Help?

For clarification or corrections please contact our support team or email us at opmanagerplus-support@manageengine.com.

Video Zone
OpManager Customer Videos
Altaleb Alshenqiti - Ministry of National Guard - Health Affairs
  
  •  IT Admin from "Royal flying doctor service", Australia
     Jonathan ManageEngine Customer
  •  Michael - Network & Tech, ManageEngine Customer
     Altaleb Alshenqiti - Ministry of National Guard - Health Affairs
  •  David Tremont, Associate Directory of Infrastructure,USA
     Todd Haverstock Administrative Director
  •  Donald Stewart, IT Manager from Crest Industries
     John Rosser, MIS Manager - Yale Chase Equipment & Services
 Pricing  Get Quote