Security Updates on Vulnerabilities
Home » Features » Security Updates on Vulnerabilities

DOS vulnerability

This document addresses an "DOS" vulnerability in ManageEngine RMM Central, reported by Da22le.

Severity: Medium

Affected version(s): Build 10.2.3 and below

Fixed version(s): Build 10.2.5

Fixed on: June 12, 2023

More Details

What was the problem?

A specially crafted request by an authenticated user resulted in a denial of service(DoS).

Impact of the vulnerability

Out of Memory issue leads to server's unavailability.

How do I fix it?

These vulnerabilities have been fixed on June 12 2023 and the fix is available in the build 10.2.5 with monitoring build 12.7.116. Apply the latest build to your existing product installation as per the upgrade pack instructions provided in the service pack page.

https://www.manageengine.com/remote-monitoring-management/service-packs.html

If you need further help, please contact our support at ‌rmmcentral-support@manageengine.com

Keywords: Security Updates, Vulnerabilities and Fixes.