What is CVE-2022-40300?

CVE-2022-40300 is a vulnerability in N/a. Published 2022-09-16.

Is CVE-2022-40300 known to be exploited?

2 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in N/a

CVE-2022-40300

Zoho ManageEngine Password Manager Pro through 12120 before 12121, PAM360 through 5550 before 5600, and Access Manager Plus through 4304 before 4305 have multiple SQL injection vulnerabilities.

EPSS: 0.993 (99.9th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

Public proof-of-concept exploits

ARPSyndicate/cve-scores
karimhabush/cyberowl

References

www.manageengine.com/products/passwordmanagerpro/advisory/cve-2022-40300.html (x_refsource_MISC)

Frequently asked questions

What is CVE-2022-40300?: CVE-2022-40300 is a vulnerability in N/a. Published 2022-09-16.
Is CVE-2022-40300 known to be exploited?: 2 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.