Security Updates - CVE-2021-20078 | ManageEngine Firewall Analyzer

CVE-2021-20078

Vulnerability Details
Impact	CVSS V3 rating: 9.1 (High)
Reported on	04 Mar 2021
Reported by	David
Fixed on	26 Mar 2021
Affected Builds	125216 - 125361
Fixed in	Build 125362
Overview	Folder deletion due to Path Traversal vulnerability in Sparkgateway jar
Recommended Fix	Upgrade to Firewall Analyzer Version 12.5.362 or above.

Folder deletion due to Path Traversal vulnerability in Spark gateway jar

We recommend that you upgrade to Firewall Analyzer version 12.5.362 and above to fix this issue.

Source and Acknowledgements

Find out more about CVE-2021-20078 from the CVE dictionary.

For clarification or corrections please contact our support team or email us at fwanalyzer-support@manageengine.com

A single platter for comprehensive Network Security Device Management

Quick LinksNetwork Bandwidth ReportsNetwork Security & Device MgmtLog ManagementCompliance &amp MSSP Features

Firewall Log Analysis
1. » Check Point
2. » Cisco PIX Device
3. » Cisco ASA Device
4. » CyberGuard
5. » Fortigate
6. » IPFIX with Extensions Support
7. » Virtual/Context-based Firewall Support

Security Device Log Analysis
1. » Microsoft ISA
2. » NetScreen
3. » SonicWALL
4. » WatchGuard
5. » Squid Proxy

MSSP Specific Features
1. » Managed Firewall Service
2. » Dashboard and User Views
3. » Rebranding
Troubleshooting Tool:
1. » Diagnose Live Firewall Connections