Unrated severityNVD Advisory· Published Dec 4, 2014· Updated Jun 17, 2026
CVE-2014-6035
CVE-2014-6035
Description
Directory traversal vulnerability in the FileCollector servlet in ZOHO ManageEngine OpManager 11.4, 11.3, and earlier allows remote attackers to write and execute arbitrary files via a .. (dot dot) in the FILENAME parameter.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3cpe:2.3:a:zohocorp:manageengine_opmanager:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:zohocorp:manageengine_opmanager:*:*:*:*:*:*:*:*range: <=11.3
- cpe:2.3:a:zohocorp:manageengine_opmanager:11.4:*:*:*:*:*:*:*
- Range: <=11.4
Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.