CVE-2022-28810

Posted on by admin

CVE-2022-28810

Zoho ManageEngine ADSelfService Plus before 6122 allows an authenticated user to achieve remote code execution via executable CMD.EXE input in a password field, This only occurs if a certain password sync feature is enabled that uses passwords as script arguments.

Source: CVE-2022-28810

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다