Caitlin Condon · @catc0n
675 followers · 155 posts · Server infosec.exchangeAbsolutely stellar root cause analysis of ManageEngine #CVE_2022_47966 from
@iagox86 and new Rapid7 research team member Stephen Fewer. TL;DR = exploitation not equally trivial across all affected products. There are also a number of vulns at play, two of which are from years and years ago. https://attackerkb.com/topics/gvs0Gv8BID/cve-2022-47966/rapid7-analysis
Caitlin Condon · @catc0n
675 followers · 155 posts · Server infosec.exchangeAbsolutely stellar root cause analysis of ManageEngine #CVE_2022_47966 from
@iagox86
and new Rapid7 research team member Stephen Fewer. TL;DR = exploitation not equally trivial across all affected products. There are also a number of vulns at play, two of which are from years and years ago. https://attackerkb.com/topics/gvs0Gv8BID/cve-2022-47966/rapid7-analysis
Ron Bowes · @iagox86
1002 followers · 208 posts · Server infosec.exchangeI just posted our #Rapid7 technical analysis of the recent vulnerability in #ManageEngine - CVE-2022-47966 (#cve202247966 / #CVE_2022_47966. Big thanks to @catc0n and my new co-worker @stephenfewer@twitter.com for their help on this one!
https://attackerkb.com/topics/gvs0Gv8BID/cve-2022-47966/rapid7-analysis
#rapid7 #manageengine #cve202247966 #cve_2022_47966
remy🐀 · @_mattata
862 followers · 127 posts · Server infosec.exchange
PoC and analysis for CVE-2022-47966 Zoho ManageEngine pre-authentication remote code execution vulnerability has been published.
GreyNoise tag for tracking related activity is live and available to all users.
https://viz.greynoise.io/tag/zoho-manageengine-rce-cve-2022-47966-attempt?days=3
https://www.horizon3.ai/manageengine-cve-2022-47966-technical-deep-dive/
#cve_2022_47966