# Security Updates - CVE-2021-20078 | ManageEngine OpManager

## CVE-2021-20078

### Folder deletion due to path traversal vulnerability in Remote Desktop feature

| Vulnerability Details |  |
|---|---|
| Impact | **CVSS V3 rating: 9.1 (Critical)** |
| Reported | 4th March, 2021 |
| Reported by | David |
| Fixed | 26th March, 2021 |
| Affected Builds | Builds 125346 and below |
| Fixed in | Builds 125332/125347 |
| Overview | Folder deletion due to path traversal vulnerability in Remote Desktop feature |
| Recommended Fix | **→ For builds 125331 and below, please upgrade to** **[the latest version here.](https://www.manageengine.com/network-monitoring/service-packs.html?125332)**<br><br>**→ For builds 125334 to 125346, please upgrade to** **[the latest version here.](https://www.manageengine.com/network-monitoring/itom-servicepack.html?125346)** |

### Description

Folder deletion due to path traversal vulnerability in Remote Desktop feature.

We recommend that you [upgrade to the latest version of OpManager](https://www.manageengine.com/network-monitoring/service-packs.html?125332) or contact our support team at [itom-upgrades@manageengine.com](mailto:itom-upgrades@manageengine.com) to fix this issue.

**Source and Acknowledgements**

Find out more about CVE-2021-20078 from the [CVE dictionary](https://nvd.nist.gov/vuln/detail/CVE-2021-20078).

### Need Help?

For clarification or corrections please contact our [support team](https://www.manageengine.com/network-monitoring/support.html) or email us at [itom-upgrades@manageengine.com](mailto:itom-upgrades@manageengine.com).