vulnerability
Zoho ManageEngine ServiceDesk Plus: CVE-2022-40772: Privilege escalation vulnerability
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 7 | (AV:N/AC:L/Au:S/C:C/I:N/A:N) | Oct 14, 2022 | Dec 18, 2024 | Jun 26, 2025 |
Severity
7
CVSS
(AV:N/AC:L/Au:S/C:C/I:N/A:N)
Published
Oct 14, 2022
Added
Dec 18, 2024
Modified
Jun 26, 2025
Description
An privilege escalation vulnerability allows the unauthorised users to access the query report has been fixed in multiple ITSM products.
Solution
zoho-manageengine-servicedesk-plus-upgrade-latest
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.