Technical Advisory: Multiple ManageEngine Products Targeted by Various Threat Actors

Technical Advisory: Multiple ManageEngine Products Targeted by Various Threat Actors

Starting on January 20 2023,  Bitdefender Labs started to notice a global increase in attacks using the ManageEngine exploit CVE-2022-47966. This Remote Code Execution (RCE) vulnerability (CVSSv3 critical score 9.8) allows full takeover of the compromised system by unauthenticated threat actors. A total of 24 different products from Zoho ManageEngine are vulnerable.

Article Link: Technical Advisory: Multiple ManageEngine Products Targeted by Various Threat Actors