This page contains a list of all security vulnerabilities fixed in OpManager Plus along with its CVE id and fixed build number. Go to ManageEngine's Security Response Center to report vulnerabilities on ManageEngine products.
|CVE ID||Synopsis||Severity||Fixed in version||Link to latest build|
|CVE-2021-3287||Unauthenticated Remote Code Execution (RCE) vulnerability due to general bypass for the deserialization class.||Critical||125220/125314||Download|
|CVE-2020-12116||Path Traversal vulnerability||High||124196/125125|
|CVE-2019-15106||User login bypass vulnerability in APM plugin||High||124062/124070|
|Internal||An operator user could access some restricted folders by bypassing the session.||High||123241|
|CVE-2018-19403||Unauthenticated Remote Code Execution (RCE) vulnerability||High||123231|