Severity: High
CVE ID: CVE-2023-31099
| Product name | Affected build versions | Fixed version | Fixed on |
| OpManager | Builds till 126323 | 126324 | April 10, 2023 |
Description
Enterprise Edition: Remote code execution vulnerability was identified during the data transfer in the Enterprise Edition.
Impact
Injecting RCE payload via burp suite in the Probe-Central servlets request body led to remote code execution in the data transfer.
We recommend that you upgrade to the latest version of OpManager or contact our support team at opmanager-support@manageengine.com to fix this issue.
Source and Acknowledgements
Find out more about CVE-2023-31099 from the CVE dictionary.
For clarification or corrections please contact our support team or email us at opmanager-support@manageengine.com.