CVE-2020-13818

Path Traversal vulnerability

Vulnerability Details
Impact CVSS V3 rating: NA
Reported 26th May 2020
Reported by Reported by Yazhi Wang of Trend Micro and zerodayinitiative
Fixed June 01, 2020
Affected Builds Builds till 125143
Fixed in Builds 125144
Overview Directory Traversal validation was being bypassed when using <cachestart>
Recommended Fix For Builds 12.5.143 please upgrade to OpManager Version 12.5.144.

 

Description

Directory Traversal validation was being bypassed when using <cachestart>. This issue has now been fixed.

We recommend that you upgrade to OpManager Version 12.5.144  or contact our support team at opmanager-support@manageengine.com to fix this issue.

Source and Acknowledgements

Find out more about CVE-2020-13818 from the CVE dictionary.

Need Help?

For clarification or corrections, please contact our support team or email us at opmanager-support@manageengine.com.

Video Zone
OpManager Customer Videos
Altaleb Alshenqiti - Ministry of National Guard - Health Affairs
  
  •  IT Admin from "Royal flying doctor service", Australia
     Jonathan ManageEngine Customer
  •  Michael - Network & Tech, ManageEngine Customer
     Altaleb Alshenqiti - Ministry of National Guard - Health Affairs
  •  David Tremont, Associate Directory of Infrastructure,USA
     Todd Haverstock Administrative Director
  •  Donald Stewart, IT Manager from Crest Industries
     John Rosser, MIS Manager - Yale Chase Equipment & Services
 Pricing  Get Quote