all InfoSec news
Vulnerability Spotlight: Vulnerability in ManageEngine OpManager could lead to XXE attack
Malware Analysis, News and Indicators - Latest topics malware.news
Marcin “Icewall” Noga of Cisco Talos discovered this vulnerability.
Cisco Talos recently discovered a vulnerability in ManageEngine OpManager that could lead to an XML external entity (XXE) attack.
OpManager is network monitoring software that allows users to track and manage the performance of connected routers, switches, firewalls, servers, VMs and more. A vulnerability (TALOS-2022-1685/CVE-2022-43473) exists when the user attempts to add a unified computing system (UCS) to the software.
An attacker could exploit this vulnerability by providing a …
attack cisco cisco talos computing cve exploit external firewalls malicious manage manageengine manageengine opmanager monitoring monitoring software network network monitoring opmanager performance point process routers servers software spotlight switches system talos vms vulnerability vulnerability spotlight xml xxe