XML Injection Vulnerability in Endpoint Manager 2022.3 and Below: Unauthorized File Download and Execution

XML Injection Vulnerability in Endpoint Manager 2022.3 and Below: Unauthorized File Download and Execution

CVE-2022-35259 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

XML Injection with Endpoint Manager 2022. 3 and below causing a download of a malicious file to run and possibly execute to gain unauthorized privileges.

Learn more about our Web Application Penetration Testing UK.