Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMitreCVELIST:CVE-2018-12997
HistoryJun 29, 2018 - 12:00 p.m.

CVE-2018-12997

2018-06-2912:00:00
mitre
www.cve.org
4

EPSS

0.01

Percentile

84.0%

JSON

Incorrect Access Control in FailOverHelperServlet in Zoho ManageEngine Netflow Analyzer before build 123137, Network Configuration Manager before build 123128, OpManager before build 123148, OpUtils before build 123161, and Firewall Analyzer before build 123147 allows attackers to read certain files on the web server without login by sending a specially crafted request to the server with the operation=copyfile&fileName= substring.

Related

dsquare 1
prion 1
cve 1
nvd 1
zdt 1
packetstorm 1
dsquare
dsquare
ManageEngine Multiple Products File Disclosure
2018-09-18 00:00:00
prion
prion
Improper access control
2018-06-29 12:29:00
cve
cve
CVE-2018-12997
2018-06-29 12:29:00
nvd
nvd
CVE-2018-12997
2018-06-29 12:29:00
zdt
zdt
Zoho ManageEngine 13 (13790 build) XSS / File Read / File Deletion Vulnerabilities
2018-07-23 00:00:00
packetstorm
packetstorm
Zoho ManageEngine 13 (13790 build) XSS / File Read / File Deletion
2018-07-22 00:00:00

EPSS

0.01

Percentile

84.0%

JSON
Related for CVELIST:CVE-2018-12997
dsquare1prion1cve1nvd1zdt1packetstorm1