| Vulnerability Details | |
|---|---|
| Impact | CVSS V3 rating: NA |
| Reported | 26th May 2020 |
| Reported by | Reported by Yazhi Wang of Trend Micro and zerodayinitiative |
| Fixed | June 01, 2020 |
| Affected Builds | Builds till 125143 |
| Fixed in | Builds 125144 |
| Overview | Directory Traversal validation was being bypassed when using <cachestart> |
| Recommended Fix | For Builds 12.5.143 please upgrade to OpManager Version 12.5.144. |
Directory Traversal validation was being bypassed when using <cachestart>. This issue has now been fixed.
We recommend that you upgrade to OpManager Version 12.5.144 or contact our support team at opmanager-support@manageengine.com to fix this issue.
Source and Acknowledgements
Find out more about CVE-2020-13818 from the CVE dictionary.
For clarification or corrections, please contact our support team or email us at opmanager-support@manageengine.com.