At a glance:
| ID | 49287 |
| Created | Jun 22, 2020 |
| Updated | Sep 29, 2020 |
| Severity |
|
| Coverage |
IPS (Regular DB)
IPS (Extended DB)
|
| Default Action | drop |
| Active |
|
| Affected OS | Windows, Linux |
| Affected App | Other |
Legend
| Enabled/Available |
|
| Disabled/Not Avaliable | 
|
Update History
| Date | Version | Detail |
|---|---|---|
| 2020-06-22 | 15.869 | * |
| 2020-07-06 | 15.879 | Default_action:pass:drop |
| 2020-09-30 | 16.934 | Name:Zoho. ManageEngine. OpManager. cachestart. Directory. Traversal:ZOHO. ManageEngine. OpManager. cachestart. Directory. Traversal |
Refine Search
Intrusion Prevention
ZOHO.ManageEngine.OpManager.cachestart.Directory.Traversal
Description
This indicates an attack attempt to exploit a Directory Traversal Vulnerability in Zoho Corporation ManageEngine OpManager.
This vulnerability is due to improper validation of user input in the request URI. A remote unauthenticated attacker could exploit this vulnerability by sending a crafted request to the target server. Successful exploitation could result in the disclosure of sensitive information.
Affected Products
Zoho Corporation ManageEngine OpManager Released build before 125144
Impact
Information Disclosure: Remote attackers can gain sensitive information from vulnerable systems.
Recommended Actions
Apply the most recent upgrade or patch from the vendor.
https://www.manageengine.com/network-monitoring/help/read-me-complete.html#125144