ManageEngine OpManager Vulnerable to Remote Code Execution

CVE-2024-5466

8.8HIGH

Key Information

Vendor: Manageengine
Status: Opmanager, Remote Monitoring And Management
Vendor: CVE Published:; 23 August 2024

Summary

Zohocorp ManageEngine OpManager and Remote Monitoring and Management versions 128329 and below are vulnerable to the authenticated remote code execution in the deploy agent option.

Affected Version(s)

OpManager, Remote Monitoring and Management <= 128329

CVSS V3.1

Score:

8.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published.
Aug 23, 2024
Vulnerability Reserved.
May 29, 2024

Collectors

NVD DatabaseMitre Database