Lucene search
Dsquare SecurityE-407HistoryNov 30, 2014 - 12:00 a.m.
ManageEngine OpManager FileCollector Servlet File Upload
2014-11-3000:00:00
Dsquare Security
23
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.955 High
EPSS
Percentile
99.2%
File upload vulnerability in ManageEngine OpManager FileCollector servlet FILENAME parameter
Vulnerability Type: File Upload
For the exploit source code contact DSquare Security sales team.References
Related
zdi
zdi
checkpoint_advisories
checkpoint_advisories
cve
cve
CVE-2014-6035
2014-12-04 17:59:00
prion
prion
Directory traversal
2014-12-04 17:59:00
packetstorm
packetstorm
ManageEngine Code Execution / File Deletion
2014-09-29 00:00:00
openvas
openvas
ManageEngine OpManager Multiple Vulnerabilities (Nov 2014) - Active Check
2014-11-24 00:00:00
nessus
nessus
ManageEngine OpManager Multiple Directory Traversal Vulnerabilities
2015-02-16 00:00:00
securityvulns
securityvulns
zdt
zdt
ManageEngine OpManager / Social IT Plus / IT360 - Multiple Vulnerabilities
2018-01-26 00:00:00
exploitpack
exploitpack
ManageEngine OpManager Social IT Plus IT360 - Multiple Vulnerabilities
2014-11-09 00:00:00
exploitdb
exploitdb
ManageEngine OpManager / Social IT Plus / IT360 - Multiple Vulnerabilities
2014-11-09 00:00:00
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.955 High
EPSS
Percentile
99.2%
Related for E-407