CVE-2020-10859

Summary:

Zoho ManageEngine Desktop Central before 10.0.484 allows authenticated arbitrary file writes during ZIP archive extraction via Directory Traversal in a crafted AppDependency API request.

Published:

Tuesday, May 5, 2020 - 21:15

cvss:

5.0