Programming

All orgs urged to prioritize patching this flaw

a year ago

Anonymous $kMjaqkS8vo

https://www.bleepingcomputer.com/news/security/cisa-warns-of-critical-manageengine-rce-bug-used-in-attacks/

The Cybersecurity and Infrastructure Security Agency (CISA) has added a critical severity Java deserialization vulnerability affecting multiple Zoho ManageEngine products to its catalog of bugs exploited in the wild.
This security flaw (CVE-2022-35405) can be exploited in low-complexity attacks, without requiring user interaction, to gain remote code execution on servers running unpatched Zoho ManageEngine PAM360 and Password Manager Pro (without authentication) or Access Manager Plus (with authentication) software.

neoform

Associated IPs

Last Seen

2 hours ago

Reputation

Spam

0.000

malasiafo

Associated IPs

Last Seen

about an hour ago

Reputation

Spam

0.000

wilfarel

Associated IPs

Last Seen

58 minutes ago

Reputation

Spam

0.000

myophines

Associated IPs

Last Seen

12 minutes ago

Reputation

Spam

0.000

conanthebaptis

Associated IPs

Last Seen

46 minutes ago

Reputation

Spam

0.000

yama4mana

Associated IPs

Last Seen

4 minutes ago

Reputation

Spam

0.000

midlifecross

Associated IPs

Last Seen

9 minutes ago

Reputation

Spam

0.000

googellyeyes

Associated IPs

Last Seen

42 minutes ago

Reputation

Spam

0.000

gogogo-gadget

Associated IPs

Last Seen

24 minutes ago

Reputation

Spam

0.000

Load more voters