Path Traversal Vulnerability in NCSIST ManageEngine Mobile Device Manager (MDM) APP Allows Unauthorized Access to System Files

Path Traversal Vulnerability in NCSIST ManageEngine Mobile Device Manager (MDM) APP Allows Unauthorized Access to System Files

CVE-2023-41344 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

NCSIST ManageEngine Mobile Device Manager(MDM) APP's special function has a path traversal vulnerability. An unauthenticated remote attacker can exploit this vulnerability to bypass authentication and read arbitrary system files.

Learn more about our Mobile App Penetration Testing.