vulnerability
Zoho ManageEngine PasswordManager Pro: CVE-2022-42889: Text4shell Vulnerability
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 10 | (AV:N/AC:L/Au:N/C:C/I:C/A:C) | Oct 13, 2022 | Dec 23, 2024 | Jul 2, 2025 |
Severity
10
CVSS
(AV:N/AC:L/Au:N/C:C/I:C/A:C)
Published
Oct 13, 2022
Added
Dec 23, 2024
Modified
Jul 2, 2025
Description
Apache Commons Text library is used in the belowmentioned ManageEngine onpremise products. We have not identified any usage of the library that is exploitable and the investigation is still in progress.
Solution
zoho-manageengine-passwordmanager-pro-upgrade-latest
References
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.