Arbitrary File Deletion Vulnerability in EndPoint Central Agents

CVE-2024-10203

7HIGH

Key Information

Status
Endpoint Central
Vendor
CVE Published:
7 November 2024

Summary

Zohocorp ManageEngine EndPoint Central versions 11.3.2416.21 and below, 11.3.2428.9 and below are vulnerable to Arbitrary File Deletion in the agent installed machines.

Affected Version(s)

EndPoint Central < 11.3.2416.22

EndPoint Central < 11.3.2428.10

Refferences

CVSS V3.1

Score:
7
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
High
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Collectors

NVD DatabaseMitre Database

Credit

Brenden Meeder
.