Security Updates - CVE Database
Home » Security Updates » CVE-2020-12116

CVE-2020-12116

Path Traversal vulnerability

Vulnerability Details
ImpactCVSS V3 rating: NA
Reported22th April 2020
Reported byR.J. McDown, an independent security researcher
Fixed29th April 2020
Affected Builds→ Builds till 124195
→ Builds 125000 - 125124
Fixed inBuilds 124196/125125
OverviewPath Traversal vulnerability in URLs starting with <cachestart>
Recommended Fix→ For builds till 124195, please upgrade to OpManager Plus Version 12.4.196 or above.

→ For Builds 12.5.000 - 12.5.124, please upgrade to OpManager Plus Version 12.5.125.

 

Description

A path traversal vulnerability was recently reported, which enabled unrestricted access to any file in the product directory. This has been fixed.

We recommend that you upgrade to OpManager Plus Version 12.4.196 / OpManager Plus Version 12.5.125 (for builds 125000 - 125124) or contact our support team at opmanagerplus-support@manageengine.com to fix this issue.

Source and Acknowledgements

Find out more about CVE-2020-12116 from the CVE dictionary.

Need Help?

For clarification or corrections, please contact our support team or email us at opmanagerplus-support@manageengine.com.

Video Zone
OpManager Customer Videos
Michael Senatore, Operations Manager, Rojan Australia Pty Ltd.
  
  •  Venkatesan Veerappan, IT Consultant
     Mohd Jaffer Tawfiq Murtaja, Information Security officer from Al Ain sports club
  •  Jonathan ManageEngine Customer
     IT Admin from "Royal flying doctor service", Australia
  •  Michael Senatore, Operations Manager, Rojan Australia Pty Ltd.
     Michael - Network & Tech, ManageEngine Customer
  •  Altaleb Alshenqiti - Ministry of National Guard - Health Affairs
     Donald Stewart, IT Manager from Crest Industries
  •  John Rosser, MIS Manager - Yale Chase Equipment & Services
     David Tremont, Associate Directory of Infrastructure,USA
Related Products