CVE-2020-10541
First published: Fri Mar 13 2020(Updated: )
Zoho ManageEngine OpManager before 12.4.179 allows remote code execution via a specially crafted Mail Server Settings v1 API request. This was fixed in 12.5.108.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Zohocorp ManageEngine OpManager | <12.4.179 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the vulnerability ID for Zoho ManageEngine OpManager?
The vulnerability ID for Zoho ManageEngine OpManager is CVE-2020-10541.
What is the severity of CVE-2020-10541?
The severity of CVE-2020-10541 is critical.
How does CVE-2020-10541 allow remote code execution?
CVE-2020-10541 allows remote code execution via a specially crafted Mail Server Settings v1 API request.
How can I check if my version of Zoho ManageEngine OpManager is affected by CVE-2020-10541?
If your version of Zoho ManageEngine OpManager is before 12.4.179, it is affected by CVE-2020-10541.
How can I fix CVE-2020-10541 in Zoho ManageEngine OpManager?
To fix CVE-2020-10541, you need to update Zoho ManageEngine OpManager to version 12.5.108 or later.
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/author
- agent/last-modified-date
- agent/references
- agent/severity
- agent/first-publish-date
- agent/tags
- agent/description
- agent/event
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/zohocorp
- canonical/zohocorp manageengine opmanager