vulnerability
Zoho ManageEngine ADAudit Plus: CVE-2022-28219: Unauthenticated Remote Code Execution Vulnerability
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 7 | (AV:N/AC:L/Au:N/C:P/I:P/A:P) | Mar 30, 2022 | Jul 5, 2022 | Nov 21, 2025 |
Severity
7
CVSS
(AV:N/AC:L/Au:N/C:P/I:P/A:P)
Published
Mar 30, 2022
Added
Jul 5, 2022
Modified
Nov 21, 2025
Description
ManageEngine ADAudit Plus is vulnerable to unauthenticated XML External Entity XXE and Java Deserialization vulnerabilities. The chain could be leveraged to unauthenticated remote code execution.
Solution
zoho-manageengine-adaudit-plus-upgrade-latest
References
- CWE-611
- CVE-2022-28219
- https://attackerkb.com/topics/CVE-2022-28219
- URL-http://cewolf.sourceforge.net/new/index.html
- URL-http://packetstormsecurity.com/files/167997/ManageEngine-ADAudit-Plus-Path-Traversal-XML-Injection.html
- URL-https://manageengine.com
- URL-https://www.horizon3.ai/red-team-blog-cve-2022-28219/
- URL-https://www.manageengine.com/products/active-directory-audit/cve-2022-28219.html
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.