| Vulnerability Details | |
|---|---|
| Impact | CVSS V3 rating: NA |
| Reported | 13th March 2020 |
| Reported by | Jason Nordenstam |
| Fixed | 13th March 2020 |
| Affected Builds | Till Build 124171 |
| Fixed in | Build 124172 |
| Overview | Remote Code Execution (RCE) vulnerability in Mail Server Settings |
| Recommended Fix | Upgrade to NetFlow Analyzer Version 12.4.172 or above. |
The obsolete code causing Remote Code Execution (RCE) vulnerability in Mail Server Settings v1 APIs have been removed.
We recommend that you upgrade to NetFlow Analyzer version 12.4.172 and above to fix this issue.
Source and Acknowledgements
Find out more about CVE-2020-10541 from the CVE dictionary.
For clarification or corrections please contact our support team or email us at netflowanalyzer-support@manageengine.com