Unrated severityNVD Advisory· Published May 23, 2019· Updated Aug 5, 2024
CVE-2017-11740
CVE-2017-11740
Description
In Zoho ManageEngine Application Manager 13.1 Build 13100, the administrative user has the ability to upload files/binaries that can be executed upon the occurrence of an alarm. An attacker can abuse this functionality by uploading a malicious script that can be executed on the remote system.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Zoho/ManageEngine Application Managerdescription
- Range: = 13.1 Build 13100
Patches
Vulnerability mechanics
References
3- application.commitrex_refsource_MISC
- manageengine.commitrex_refsource_MISC
- www.trustwave.com/en-us/resources/security-resources/security-advisories/mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.