CVE-2019-11677 · Vexday

CVE-2019-11677

EPSS 9.4%

The Custom Report import function in Zoho ManageEngine Firewall Analyzer before 12.3 Build 123224 is vulnerable to XML External Entity (XXE) Injection.

Affected products

n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://www.manageengine.com/products/firewall/release-notes.html