CVE-2022-40771 - How an XML External Entity (XXE) Attack in Zoho ManageEngine ServiceDesk Plus Exposed Sensitive Data
---
Introduction
In late 2022, a critical security flaw—CVE-2022-40771—was disclosed in Zoho ManageEngine ServiceDesk Plus (versions 13010 and earlier). This vulnerability is an
CVE-2022-40770 - Command Injection in Zoho ManageEngine ServiceDesk Plus (Versions ≤ 13010) – A Deep Dive
When it comes to managing IT services, Zoho ManageEngine ServiceDesk Plus is a popular choice for organizations around the globe. However, like any software, it’
CVE-2022-42904 - Exploiting Zoho ManageEngine ADManager Plus Proxy Command Injection (Simple Guide)
Zoho ManageEngine ADManager Plus is a widely used Active Directory management and reporting tool, found in schools, businesses, government, and more. Frighteningly, a serious vulnerability
CVE-2022-40773 - Exploiting Privilege Escalation in Zoho ServiceDesk Plus MSP and SupportCenter Plus
In 2022, a serious vulnerability was found in Zoho's ManageEngine ServiceDesk Plus MSP (before version 10609) and SupportCenter Plus (before version 11025). This
Episode
00:00:00
00:00:00