CVE-2023-41904 - Zoho ManageEngine ADManager Plus before 7203 allows 2FA bypass in REST APIs
A recent vulnerability, known as CVE-2023-41904, has been discovered in Zoho ManageEngine ADManager Plus, a popular web-based Active Directory management and reporting solution. This vulnerability
CVE-2023-29505: Cross-site WebSocket Hijacking Vulnerability Found in Zoho ManageEngine Network Configuration Manager 12.6.165 - Exploit Details and Mitigation Steps
Recently, an issue was discovered in Zoho ManageEngine Network Configuration Manager (version 12.6.165) that allows Cross-site WebSocket hijacking. This vulnerability has been assigned
CVE-2023-29084: Critical Command Injection Vulnerability in Zoho ManageEngine ADManager Plus Through 718
Security researchers have discovered a critical Command Injection vulnerability (CVE-2023-29084) in Zoho ManageEngine ADManager Plus versions up to and including 718. Zoho ManageEngine ADManager Plus
CVE-2022-47966: Critical Remote Code Execution Vulnerability in Multiple Zoho ManageEngine On-Premise Products
A critical vulnerability, identified as CVE-2022-47966, has been discovered in multiple on-premise Zoho ManageEngine products, including ServiceDesk Plus up to version 14003. This vulnerability, if
CVE-2022-40772 - Sneaking Past Validation in Zoho ManageEngine ServiceDesk Plus: a Close Look at the Vulnerability, Its Impact, and Mitigation Strategies
CVE-2022-40772 is a crucial, recently disclosed vulnerability affecting the ManageEngine ServiceDesk Plus software. Developed by Zoho Corporation, this help desk and asset management solution is
Episode
00:00:00
00:00:00