Zoho ManageEngine Password Manager Pro XML-RPC Java Deserialization Vulnerability Remote Code Execution Exploit

A java deserialization vulnerability in Zoho ManageEngine Pro before 12101 and PAM360 before 5510 allows unauthenticated attackers to send crafted XML-RPC requests with malicious serialized data to execute system commands as SYSTEM.
CVE Link
CVE-2022-35405
Exploit Platform
Windows
Exploit Type
Exploits
Remote Code Execution
Product Name
Impact