Vulnerability Database

309,237

Total vulnerabilities in the database

CVE-2022-40770

Zoho ManageEngine ServiceDesk Plus versions 13010 and prior are vulnerable to authenticated command injection. This can be exploited by high-privileged users.

  • Published: Nov 23, 2022
  • Updated: Nov 16, 2025
  • CVE: CVE-2022-40770
  • Severity: High
  • Exploit:

CVSS v3:

  • Severity: High
  • Score: 7.2
  • AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

CWEs:

OWASP TOP 10:

Software From Fixed in
zohocorp / manageengine_servicedesk_plus 13.0-13000 13.0-13000.x
zohocorp / manageengine_servicedesk_plus 13.0-13001 13.0-13001.x
zohocorp / manageengine_servicedesk_plus 13.0-13002 13.0-13002.x
zohocorp / manageengine_servicedesk_plus 13.0-13003 13.0-13003.x
zohocorp / manageengine_servicedesk_plus 13.0-13004 13.0-13004.x
zohocorp / manageengine_servicedesk_plus 13.0-13005 13.0-13005.x
zohocorp / manageengine_servicedesk_plus 13.0-13006 13.0-13006.x
zohocorp / manageengine_servicedesk_plus 13.0-13007 13.0-13007.x
zohocorp / manageengine_servicedesk_plus - 13.0
zohocorp / manageengine_servicedesk_plus 13.0-13009 13.0-13009.x
zohocorp / manageengine_servicedesk_plus 13.0-13010 13.0-13010.x
zohocorp / manageengine_servicedesk_plus 13.0-13008 13.0-13008.x
zohocorp / manageengine_servicedesk_plus_msp 10.6-10600 10.6-10600.x
zohocorp / manageengine_servicedesk_plus_msp 10.6-10601 10.6-10601.x
zohocorp / manageengine_servicedesk_plus_msp 10.6-10602 10.6-10602.x
zohocorp / manageengine_servicedesk_plus_msp 10.6-10603 10.6-10603.x
zohocorp / manageengine_servicedesk_plus_msp 10.6 10.6.x
zohocorp / manageengine_servicedesk_plus_msp - 10.6
zohocorp / manageengine_servicedesk_plus_msp 10.6-10604 10.6-10604.x
zohocorp / manageengine_servicedesk_plus_msp 10.6-10605 10.6-10605.x
zohocorp / manageengine_servicedesk_plus_msp 10.6-10607 10.6-10607.x
zohocorp / manageengine_servicedesk_plus_msp 10.6-10608 10.6-10608.x
zohocorp / manageengine_servicedesk_plus_msp 10.6-10606 10.6-10606.x
zohocorp / manageengine_servicedesk_plus_msp 10.6-10609 10.6-10609.x
zohocorp / manageengine_servicedesk_plus_msp 10.6-10610 10.6-10610.x
zohocorp / manageengine_supportcenter_plus 11.0-11014 11.0-11014.x
zohocorp / manageengine_supportcenter_plus 11.0-11013 11.0-11013.x
zohocorp / manageengine_supportcenter_plus 11.0-11012 11.0-11012.x
zohocorp / manageengine_supportcenter_plus 11.0-11011 11.0-11011.x
zohocorp / manageengine_supportcenter_plus 11.0-11010 11.0-11010.x
zohocorp / manageengine_supportcenter_plus 11.0-11009 11.0-11009.x
zohocorp / manageengine_supportcenter_plus 11.0-11008 11.0-11008.x
zohocorp / manageengine_supportcenter_plus 11.0-11007 11.0-11007.x
zohocorp / manageengine_supportcenter_plus 11.0-11006 11.0-11006.x
zohocorp / manageengine_supportcenter_plus 11.0-11005 11.0-11005.x
zohocorp / manageengine_supportcenter_plus 11.0-11004 11.0-11004.x
zohocorp / manageengine_supportcenter_plus 11.0-11003 11.0-11003.x
zohocorp / manageengine_supportcenter_plus 11.0-11002 11.0-11002.x
zohocorp / manageengine_supportcenter_plus 11.0-11001 11.0-11001.x
zohocorp / manageengine_supportcenter_plus 11.0-11000 11.0-11000.x
zohocorp / manageengine_supportcenter_plus 11.0-11015 11.0-11015.x
zohocorp / manageengine_supportcenter_plus 11.0-11016 11.0-11016.x
zohocorp / manageengine_supportcenter_plus 11.0-11017 11.0-11017.x
zohocorp / manageengine_supportcenter_plus 11.0-11018 11.0-11018.x
zohocorp / manageengine_supportcenter_plus 11.0-11019 11.0-11019.x
zohocorp / manageengine_supportcenter_plus - 11.0
zohocorp / manageengine_supportcenter_plus 11.0-11021 11.0-11021.x
zohocorp / manageengine_supportcenter_plus 11.0-11020 11.0-11020.x
zohocorp / manageengine_supportcenter_plus 11.0-11022 11.0-11022.x
zohocorp / manageengine_supportcenter_plus 11.0-11024 11.0-11024.x
zohocorp / manageengine_supportcenter_plus 11.0-11025 11.0-11025.x