ManageEngine OpUtils – Build 123275 Released

[et_pb_section fb_built=”1″ admin_label=”section” _builder_version=”3.0.47″ custom_padding=”0|0px|57px|0px|false|false”][et_pb_row custom_padding=”0|0px|0|0px|false|false” admin_label=”row” _builder_version=”3.0.48″ background_size=”initial” background_position=”top_left” background_repeat=”repeat”][et_pb_column type=”4_4″ _builder_version=”3.0.47″ parallax=”off” parallax_method=”on”][et_pb_text _builder_version=”3.19.3″ text_font=”||||||||” text_font_size=”14px” background_size=”initial” background_position=”top_left” background_repeat=”repeat”]

• Under Inventory, Actions column with scan and delete option is made available which makes it easier to do these functions.
• Under Inventory, approving of subnets can be done in a few clicks now by selecting the ‘Approve’ option found in discovered subnets.
• Previously under Inventory, ‘Approve Subnets’ tab didn’t display the subnet address and mask values of a selected subnet. The issue is fixed now.
• Under Inventory, ‘Added Time’ column is added and many other irrelavant columns are removed from the discovered subnets of IPAM.
• Under Inventory, an appropriate message is now displayed when bulk subnets are selected for approval.
• Under Settings of Switch Port Mapper, dropdown options such as port number and interface name are given inorder to show port label text in switch snapshot page.
• The Community Checker tool, which scans the range of IP Addresses to get their SNMP read and write community strings in the network, has been brought back under SNMP tools.
• Under Mac-to-IP Mapping, The XSS vulnerability issue in addRouter API has been fixed.
• Under IPAM Settings, The XSS vulnerability issue in addIPAMScheduler API has been fixed.
• Unauthenticated access to ‘DataMigrationServlet’ has been fixed. (Refer: CVE-2018-19403)
• For other language installation, iTextAsian.jar file has to be downloaded by the user. This download message has been enhanced and is displayed clearly in OpUtils’s UI.
• Under Bandwidth Monitor in Inventory, the page was redirected to ‘Add switch’ page when Edit option of ifName is clicked. This issue is fixed now.
• Under Inventory, the “No records to view” message was not shown even when there is no data available. This issue is fixed now.
• Under Bandwidth Monitor in Inventory, when ‘List Tools’ icon is clicked the page is redirected to device snapshot page after the tools list is shown. This issue is fixed now.
• Added ‘Tray’ Icon for Windows installation to start, stop, and get status of OpUtils.
• Action class has been removed as it causes vulnerabilities in the product.
• The Horizontal menu in the UI is enhanced in such a way that an “Add Device” option is added to Inventory, IP address manager, switch port mapper, etc. when the mouse hovers over it.
• Under Settings, the “Maintain scan result of last 7 days” option of publish function didn’t work properly. The issue is fixed now.
• Under Switch Snapshot page, the custom column’s validation doesn’t work when updating the boolean and integer data type. The issue is fixed now.
• General : During API calls, there was an ‘APIKey’ exposure vulnerability. This issue has been fixed now.
• General : Pre-populated Database has been bundled with the Windows 64Bit build.
• General : The SQL injection vulnerability in ‘getDeviceCompleteDetails’ and ‘getAssociatedCredentials’ API’s have been fixed.
• General : There was an SQL injection vulnerability in the Alarms section. This issue has been fixed.
• General : In Alarms, there was an XSS vulnerability in the Notes column. This issue has been fixed.
• General : XSS vulnerability issue in domain controller has been fixed.
• General : Apache’s ‘commons-beanutils’ jar has been updated to version 1.9.3 due to ‘Remote Code Execution’ vulnerability in an older version. (Refer: CVE-2018-19403)
• General : Unauthenticated access to ‘DataMigrationServlet’ has been fixed. (Refer: CVE-2018-19403)
• General : The ‘Browser Cookie theft’ vulnerability has been fixed.
• General : Under Tools, The XSS vulnerability issue in getPing API has been fixed.
• General : Under Tools, The XSS vulnerability issue in getTraceRoute API has been fixed.
• General : Under Tools, The XSS vulnerability issue in saveSystemDetails API has been fixed.
• Under Config File Manager, the history of an IP was not properly displayed and it showed ‘Undefined’. This issue is fixed now.
• Under Config File Manager, the upload config option did not enlist the device name that is selected. This issue is fixed now.
• General : In the Inventory Snapshot page, the pie chart had a legend status color mismatch. This issue has been fixed.
• General : The XSS vulnerability issue in updateWidget API has now been fixed.
• General : SQL injection vulnerability in Mail Server settings has been fixed.

[/et_pb_text][/et_pb_column][/et_pb_row][et_pb_row custom_padding=”0|0px|0|0px|false|false” _builder_version=”3.17.2″][et_pb_column type=”4_4″ _builder_version=”3.0.47″ parallax=”off” parallax_method=”on”][et_pb_cta title=”Need help with your update?” button_url=”https://manageenginesales.co.uk/contact/” button_text=”Contact Us” _builder_version=”3.17.2″ header_font_size=”34px” body_font_size=”17px” background_color=”#7cb649″ button_alignment=”center” animation_style=”bounce” background__hover_enabled=”on”]Receive expert assistance from set3 Solutions.[/et_pb_cta][/et_pb_column][/et_pb_row][et_pb_row _builder_version=”3.17.2″][et_pb_column type=”1_2″ _builder_version=”3.0.47″ parallax=”off” parallax_method=”on”][et_pb_image src=”https://manageenginesales.co.uk/wp-content/uploads/2018/03/SET-3-SOLUTIONS-LOGO-large-2-directpartnertext-cropped-museo.png” _builder_version=”3.17.2″ max_width=”60%” module_alignment=”right”][/et_pb_image][/et_pb_column][et_pb_column type=”1_2″ _builder_version=”3.0.47″ parallax=”off” parallax_method=”on”][et_pb_image src=”https://manageenginesales.co.uk/wp-content/uploads/2018/09/techpartner.png” _builder_version=”3.17.2″ max_width=”40%” module_alignment=”left”][/et_pb_image][/et_pb_column][/et_pb_row][/et_pb_section]