3 matches found
CVE-2022-23050
ManageEngine AppManager15 Build No:15510 allows an authenticated admin user to upload a DLL file to perform a DLL hijack attack inside the 'working' folder through the 'Upload Files / Binaries' functionality...
CVE-2022-23050
ManageEngine AppManager15 Build No:15510 allows an authenticated admin user to upload a DLL file to perform a DLL hijack attack inside the 'working' folder through the 'Upload Files / Binaries' functionality...
CVE-2022-23050
CVE-2022-23050 affects ManageEngine AppManager15 Build 15510. An authenticated admin can upload a DLL via the Upload Files / Binaries function to perform a DLL hijack inside the working directory. The root cause is a permissioned upload path that allows loading of attacker DLLs; exploitation stat...