Programming

All orgs urged to prioritize patching this flaw

2 years ago

Anonymous $kMjaqkS8vo

https://www.bleepingcomputer.com/news/security/cisa-warns-of-critical-manageengine-rce-bug-used-in-attacks/

The Cybersecurity and Infrastructure Security Agency (CISA) has added a critical severity Java deserialization vulnerability affecting multiple Zoho ManageEngine products to its catalog of bugs exploited in the wild.
This security flaw (CVE-2022-35405) can be exploited in low-complexity attacks, without requiring user interaction, to gain remote code execution on servers running unpatched Zoho ManageEngine PAM360 and Password Manager Pro (without authentication) or Access Manager Plus (with authentication) software.

neoform

Associated IPs

Last Seen

2 hours ago

Reputation

Spam

0.000

malasiafo

Associated IPs

Last Seen

15 minutes ago

Reputation

Spam

0.000

wilfarel

Associated IPs

Last Seen

40 minutes ago

Reputation

Spam

0.000

myophines

Associated IPs

Last Seen

about an hour ago

Reputation

Spam

0.000

conanthebaptis

Associated IPs

Last Seen

33 minutes ago

Reputation

Spam

0.000

yama4mana

Associated IPs

Last Seen

10 minutes ago

Reputation

Spam

0.000

midlifecross

Associated IPs

Last Seen

44 minutes ago

Reputation

Spam

0.000

googellyeyes

Associated IPs

Last Seen

a couple of minutes ago

Reputation

Spam

0.000

gogogo-gadget

Associated IPs

Last Seen

about an hour ago

Reputation

Spam

0.000

Load more voters