CVE-2020-11527

File read vulnerability in Arbitrary file

 

Vulnerability Details
Impact CVSS V3 rating: NA
Reported 14th January 2020
Reported by jacky.xing@dbappsecurity.com.cn
Fixed 28th January 2020
Affected Builds Builds till 124180
Fixed in Build 124181
Overview File read vulnerability in Arbitrary
Recommended Fix Upgrade to NCM Version 12.4.181or above.
Contact our support team (ncm-support@manageengine.com) in case of queries.

 

Description

Previously, the users were able to read the Arbitrary file, which made it vulnerable. This file read vulnerability has been fixed.

We recommend that you upgrade to NCM Version 12.4.181 or contact our support team at ncm-support@manageengine.com to fix this issue.

Source and Acknowledgements

Find out more about CVE-2020-11527 from the CVE dictionary.

Need Help?

For clarification or corrections please contact our support team or email us at ncm-support@manageengine.com.