XML Injection Vulnerability in Endpoint Manager 2022.3 and Below: Unauthorized File Download and Execution
CVE-2022-35259 · HIGH Severity
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
XML Injection with Endpoint Manager 2022. 3 and below causing a download of a malicious file to run and possibly execute to gain unauthorized privileges.
Learn more about our Web Application Penetration Testing UK.