| TVN ID | TVN-202311013 |
|---|---|
| CVE ID | CVE-2023-41344 |
| CVSS | 7.5 (High) CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
| Affected Products | NCSIST ManageEngine MDM : V1.4 |
| Description | NCSIST ManageEngine Mobile Device Manager(MDM) APP's special function has a path traversal vulnerability. An unauthenticated remote attacker can exploit this vulnerability to bypass authentication and read arbitrary system files. |
| Solution | Update version to V1.4 . |
| Credit | Xin-Yue Song(CHT Security) |
| Public Date | 2023-11-03 |
:::