High Severity ManageEngine Vulnerability Actively Used In Exploits

According to The Cybersecurity and Infrastructure Security Agency (CISA), the high severity Java deserialization vulnerability affecting multiple Zoho ManageEngine products is currently actively exploited in the wild. Exploiting the bug may allow remote code execution on servers running unpatched Zoho ManageEngine PAM360, Password Manager Pro, or Access Manager Plus software. The proof-of-concept exploit code has been available since August. Read more...