← volver
CVE-2023-47211

CVE-2023-47211

CVSS 9.1 CRITICALEPSS 47.0%CWE-22
A directory traversal vulnerability exists in the uploadMib functionality of ManageEngine OpManager 12.7.258. A specially crafted HTTP request can lead to arbitrary file creation. An attacker can send a malicious MiB file to trigger this vulnerability.
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:L/A:L
Productos afectados
ManageEngine · OpManager

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://talosintelligence.com/vulnerability_reports/TALOS-2023-1851https://www.manageengine.com/itom/advisory/cve-2023-47211.htmlhttps://www.talosintelligence.com/vulnerability_reports/TALOS-2023-1851