EPSS
Percentile
33.2%
An issue was discovered in ZOHO ManageEngine OpManager 12.2. An authenticated user can upload any file they want to share in the βGroup Chatβ or βAlarmβ section. This functionality can be abused by a malicious user by uploading a web shell.
manageengine.com
opmanager.com
www.trustwave.com/en-us/resources/security-resources/security-advisories/?fid=18736