Zoho ManageEngine Password Manager Pro XML-RPC Java Deserialization Vulnerability Remote Code Execution Exploit

This module exploits a Zoho ManageEngine Password Manager Pro present in the org.apache.xmlrpc.parser.XmlRpcRequestParser class of Zoho ManageEngine Password Manager Pro. The deployed agent will run with SYSTEM privileges.
CVE Link
CVE-2022-35405
Exploit Platform
Windows
Exploit Type
Exploits
Remote Code Execution
Product Name
Impact