vulnerability
Zoho ManageEngine ServiceDesk Plus MSP: CVE-2022-40772: Privilege escalation vulnerability
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 7 | (AV:N/AC:L/Au:S/C:C/I:N/A:N) | Sep 26, 2022 | Jan 14, 2025 | Jun 26, 2025 |
Severity
7
CVSS
(AV:N/AC:L/Au:S/C:C/I:N/A:N)
Published
Sep 26, 2022
Added
Jan 14, 2025
Modified
Jun 26, 2025
Description
An privilege escalation vulnerability allows the unauthorised users to access the query report has been fixed in multiple ITSM products.
Solution
zoho-manageengine-servicedesk-plus-msp-upgrade-latest
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.