6 matches found
CVE-2022-23050
ManageEngine AppManager15 Build No:15510 allows an authenticated admin user to upload a DLL file to perform a DLL hijack attack inside the 'working' folder through the 'Upload Files / Binaries' functionality...
CVE-2022-23050
ManageEngine AppManager15 Build No:15510 allows an authenticated admin user to upload a DLL file to perform a DLL hijack attack inside the 'working' folder through the 'Upload Files / Binaries' functionality...
Design/Logic Flaw
ManageEngine AppManager15 Build No:15510 allows an authenticated admin user to upload a DLL file to perform a DLL hijack attack inside the 'working' folder through the 'Upload Files / Binaries' functionality...
CVE-2022-23050
CVE-2022-23050 affects ManageEngine AppManager15 Build 15510. An authenticated admin can upload a DLL via the Upload Files / Binaries function to perform a DLL hijack inside the working directory. The root cause is a permissioned upload path that allows loading of attacker DLLs; exploitation stat...
CVE-2022-23050
ManageEngine AppManager15 Build No:15510 allows an authenticated admin user to upload a DLL file to perform a DLL hijack attack inside the 'working' folder through the 'Upload Files / Binaries' functionality...
PT-2022-15810 · Zoho · Manageengine Appmanager15
Name of the Vulnerable Software and Affected Versions: ManageEngine AppManager15 version 15510 Description: The issue allows an authenticated admin user to upload a DLL file, enabling a DLL hijack attack inside the 'working' folder through the 'Upload Files / Binaries' functionality...