2 matches found
Zoho ManageEngine OpManager oputilsServlet Authentication Bypass (CVE-2018-17283)
An authentication bypass vulnerability exists in ManageEngine OpManager. The vulnerability is due to lack of access control of /oputilsServlet?action=getAPIKey method...
ZOHO ManageEngine OpManager Privilege Bypass Vulnerability
ZOHO ManageEngine OpManager is a set of network, server and virtualization monitoring software from ZOHO. A privilege bypass vulnerability exists in versions prior to ZOHO ManageEngine OpManager 12.3 Build 123196, which stems from the program's failure to authenticate /oputilsServlet requests, an...