CVE-2022-40773

Published: Nov 12, 2022Modified: May 1, 2025

8.8

Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Exploitability: 2.8 / Impact: 5.9

Source: NVD

Description

Zoho ManageEngine ServiceDesk Plus MSP before 10609 and SupportCenter Plus before 11025 are vulnerable to privilege escalation. This allows users to obtain sensitive data during an exportMickeyList export of requests from the list view.

Affected (37)

Products: Zohocorp: Manageengine Servicedesk Plus Msp, Manageengine Supportcenter Plus

Zohocorp

2 products

Manageengine Servicedesk Plus Msp

Manageengine Supportcenter Plus

Configuration A

37 vulnerable

Vulnerable Software	Affected Versions
Zohocorp Manageengine Servicedesk Plus Msp	Before 10.6
Zohocorp Manageengine Servicedesk Plus Msp	Version 10.6
Zohocorp Manageengine Servicedesk Plus Msp	Version 10.6 10600
Zohocorp Manageengine Servicedesk Plus Msp	Version 10.6 10601
Zohocorp Manageengine Servicedesk Plus Msp	Version 10.6 10602
Zohocorp Manageengine Servicedesk Plus Msp	Version 10.6 10603
Zohocorp Manageengine Servicedesk Plus Msp	Version 10.6 10604
Zohocorp Manageengine Servicedesk Plus Msp	Version 10.6 10605
Zohocorp Manageengine Servicedesk Plus Msp	Version 10.6 10606
Zohocorp Manageengine Servicedesk Plus Msp	Version 10.6 10607
Zohocorp Manageengine Servicedesk Plus Msp	Version 10.6 10608
Zohocorp Manageengine Supportcenter Plus	Before 11.0
Zohocorp Manageengine Supportcenter Plus	Version 11.0
Zohocorp Manageengine Supportcenter Plus	Version 11.0 11000
Zohocorp Manageengine Supportcenter Plus	Version 11.0 11001
Zohocorp Manageengine Supportcenter Plus	Version 11.0 11002
Zohocorp Manageengine Supportcenter Plus	Version 11.0 11003
Zohocorp Manageengine Supportcenter Plus	Version 11.0 11004
Zohocorp Manageengine Supportcenter Plus	Version 11.0 11005
Zohocorp Manageengine Supportcenter Plus	Version 11.0 11006
Zohocorp Manageengine Supportcenter Plus	Version 11.0 11007
Zohocorp Manageengine Supportcenter Plus	Version 11.0 11008
Zohocorp Manageengine Supportcenter Plus	Version 11.0 11009
Zohocorp Manageengine Supportcenter Plus	Version 11.0 11010
Zohocorp Manageengine Supportcenter Plus	Version 11.0 11011
Zohocorp Manageengine Supportcenter Plus	Version 11.0 11012
Zohocorp Manageengine Supportcenter Plus	Version 11.0 11013
Zohocorp Manageengine Supportcenter Plus	Version 11.0 11014
Zohocorp Manageengine Supportcenter Plus	Version 11.0 11015
Zohocorp Manageengine Supportcenter Plus	Version 11.0 11016
Zohocorp Manageengine Supportcenter Plus	Version 11.0 11017
Zohocorp Manageengine Supportcenter Plus	Version 11.0 11018
Zohocorp Manageengine Supportcenter Plus	Version 11.0 11019
Zohocorp Manageengine Supportcenter Plus	Version 11.0 11020
Zohocorp Manageengine Supportcenter Plus	Version 11.0 11021
Zohocorp Manageengine Supportcenter Plus	Version 11.0 11022
Zohocorp Manageengine Supportcenter Plus	Version 11.0 11024