Greetings from ManageEngine!
This is to let you know that a critical security vulnerability issue was detected in RMM Central and it has now been fixed.
What is the issue?
It was reported that vulnerable SQL queries was executed in reports when passed for bview parameter (Business View filter). Any SQL operations could be performed when the query was constructed and passed for this parameter.
What should the customer do?
The issue can be fixed by upgrading your ManageEngine RMM Central to build 10.1.23 with monitoring instance to the versions 12.5.629 and above.
Please refer this page for more details.
Security Advisory - SQL injection vulnerability
We continuously strive to take appropriate security measures and adapt to relevant security controls in our products. If you have any questions regarding this issue or need further assistance, feel free to contact us through firstname.lastname@example.org
Thanks and regards,