Home » Breaking Computer security Cyber Security data security Latest Cybersecurity News Linux security Mac security Windows security

Zoho ManageEngine vulnerability used in the RCE attacks

William Marshal Posted On September 23, 2022
0


Zoho ManageEngine Vulnerability

The CISA has alerted the IT community for  a critical Java deserialization vulnerability affecting several Zoho ManageEngine solutions. The security flaw CVE-2022-35405 can be exploited without  user interactions and perform remote code execution on devices that has the following Zoho ManageEngine products – PAM360, Password Manager Pro and Access Manager Plus.

The POC and a Metasploit module is disclosed since August for gaining RCE as the user. ManageEngine already warned its customers about the exploit in July.

Zoho ManageEngine vulnerability

CISA also did add this Zoho ManageEngine vulnerability to the known exploited vulnerabilities catalog, and ensured all the federal bodies are aware of it and patching the same.

The entities have until Oct 13th to ensure their networks are patched against those exploits.

Patching Zoho ManageEngine Vulnerability is a priority

The US Cybersecurity agency has strongly requested organizations across the nation to prioritize patching the exploit.

Since these types of exploits are the usual loophole for most cybersecurity incidents, the CISA is keen on ensuring the importance of patching them.

CISA has now added 800+ vulnerabilities to the list originally published, IT  professionals and admins are requested to keep track of the exploits and patch them as soon as possible.

Zoho ManageEnginne vulnerability is big as the vendor solution is widely used across geos including North American Region, and in recent times ManageEngine servers are constantly targeted with Desktop Central a.k.a Endpoint Central in particular.

Previously the tool was breached and the data associated with it was sold on hacker forums in July 2020.

APT27 hackers were the ones behind the breach, FBI and CISA released security advisories regarding the Zoho ManageEngine vulnerability that allowed dropping web shells on the networks of corporate network including healthcare, financial services, IT consulting and electronics industries.

Subscribe to our newsletter for daily alerts on cyber events, you can also follow us on Facebook, Linkedin, and Twitter.

You can reach out to us via Twitter/ Facebook or mail us at admin@thecybersecuritytimes.com for advertising requests.

Share the article with your friends




Author

William Marshal

William has been one of the key contributors to 'The Cybersecurity Times' with 9.5 years of experience in the cybersecurity journalism. Apart from writing, he also like hiking, skating and coding.

You may also like
Best Microsoft Intune Alternatives: Top 5 MDMs to Consider
November 4, 2024
Top 7 Best Smartphones with Best Security Features in 2024
October 13, 2024
Top 11 Log Management Tools for Efficient System Management
September 20, 2024
Leave A Reply

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.