CVE-2022-35405 - Zoho ManageEngine Multiple Products Remote Code Execution Vulnerability

Vulnerability Name

Zoho ManageEngine Multiple Products Remote Code Execution Vulnerability

Description

Zoho ManageEngine PAM360, Password Manager Pro, and Access Manager Plus contain an unspecified vulnerability that allows for remote code execution.

Known To Be Used in Ransomware Campaigns?

Unknown

Action

Apply updates per vendor instructions.

Additional Notes

https://www.manageengine.com/products/passwordmanagerpro/advisory/cve-2022-35405.html

https://nvd.nist.gov/vuln/detail/CVE-2022-35405