Recently, Zoho ManageEngine released a security advisory for CVE-2022-47966, which allows for pre-authentication remote code execution in at least 24 ManageEngine products, including ADSelfService Plus and ServiceDesk Plus. This vulnerability stems from the products’ use of an outdated Apache Santuario library for XML signature validation, and allows an attacker to conduct remote code execution (RCE) […]
The post ManageEngine Vulnerability CVE-2022-47966 appeared first on Blog.
This article has been indexed from Blog
Read the original article: