Unauthenticated Remote Code Execution Vulnerability in Zoho ManageEngine Products
CVE-2022-35405
Key Information:
- Vendor
Zohocorp
- Vendor
- CVE Published:
- 19 July 2022
Badges
What is CVE-2022-35405?
Zoho ManageEngine Password Manager Pro versions prior to 12101, PAM360 versions before 5510, and Access Manager Plus prior to 4303 are susceptible to an unauthenticated remote code execution flaw. This vulnerability allows attackers to execute arbitrary code without authentication, potentially compromising sensitive data and system integrity. It's crucial for users to update their software to the latest versions to protect against potential exploitation.
CISA has reported CVE-2022-35405
CISA provides regional cyber and physical services to support security and resilience across the United States. CISA monitor the most dangerious vulnerabilities and have identifed CVE-2022-35405 as being exploited but is not known by the CISA to be used in ransomware campaigns. This is subject to change at pace
The CISA's recommendation is: Apply updates per vendor instructions.
Exploit Proof of Concept (PoC)
PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.
References
EPSS Score
94% chance of being exploited in the next 30 days.
CVSS V3.1
Timeline
- 🦅
CISA Reported
Vulnerability published
- 🟡
Public PoC available
- 👾
Exploit known to exist
Vulnerability Reserved