CVE-2022-24305
📋 TL;DR
Zoho ManageEngine SharePoint Manager Plus before version 4329 contains a sensitive data leak vulnerability that allows attackers to access privileged information. This can lead to privilege escalation where attackers gain higher-level access than intended. Organizations running vulnerable versions of this SharePoint management software are affected.
💻 Affected Systems
- Zoho ManageEngine SharePoint Manager Plus
📦 What is this software?
Manageengine Sharepoint Manager Plus by Zohocorp
View all CVEs affecting Manageengine Sharepoint Manager Plus →
Manageengine Sharepoint Manager Plus by Zohocorp
View all CVEs affecting Manageengine Sharepoint Manager Plus →
Manageengine Sharepoint Manager Plus by Zohocorp
View all CVEs affecting Manageengine Sharepoint Manager Plus →
Manageengine Sharepoint Manager Plus by Zohocorp
View all CVEs affecting Manageengine Sharepoint Manager Plus →
Manageengine Sharepoint Manager Plus by Zohocorp
View all CVEs affecting Manageengine Sharepoint Manager Plus →
Manageengine Sharepoint Manager Plus by Zohocorp
View all CVEs affecting Manageengine Sharepoint Manager Plus →
Manageengine Sharepoint Manager Plus by Zohocorp
View all CVEs affecting Manageengine Sharepoint Manager Plus →
Manageengine Sharepoint Manager Plus by Zohocorp
View all CVEs affecting Manageengine Sharepoint Manager Plus →
Manageengine Sharepoint Manager Plus by Zohocorp
View all CVEs affecting Manageengine Sharepoint Manager Plus →
Manageengine Sharepoint Manager Plus by Zohocorp
View all CVEs affecting Manageengine Sharepoint Manager Plus →
Manageengine Sharepoint Manager Plus by Zohocorp
View all CVEs affecting Manageengine Sharepoint Manager Plus →
Manageengine Sharepoint Manager Plus by Zohocorp
View all CVEs affecting Manageengine Sharepoint Manager Plus →
Manageengine Sharepoint Manager Plus by Zohocorp
View all CVEs affecting Manageengine Sharepoint Manager Plus →
Manageengine Sharepoint Manager Plus by Zohocorp
View all CVEs affecting Manageengine Sharepoint Manager Plus →
Manageengine Sharepoint Manager Plus by Zohocorp
View all CVEs affecting Manageengine Sharepoint Manager Plus →
Manageengine Sharepoint Manager Plus by Zohocorp
View all CVEs affecting Manageengine Sharepoint Manager Plus →
Manageengine Sharepoint Manager Plus by Zohocorp
View all CVEs affecting Manageengine Sharepoint Manager Plus →
Manageengine Sharepoint Manager Plus by Zohocorp
View all CVEs affecting Manageengine Sharepoint Manager Plus →
Manageengine Sharepoint Manager Plus by Zohocorp
View all CVEs affecting Manageengine Sharepoint Manager Plus →
Manageengine Sharepoint Manager Plus by Zohocorp
View all CVEs affecting Manageengine Sharepoint Manager Plus →
Manageengine Sharepoint Manager Plus by Zohocorp
View all CVEs affecting Manageengine Sharepoint Manager Plus →
Manageengine Sharepoint Manager Plus by Zohocorp
View all CVEs affecting Manageengine Sharepoint Manager Plus →
Manageengine Sharepoint Manager Plus by Zohocorp
View all CVEs affecting Manageengine Sharepoint Manager Plus →
Manageengine Sharepoint Manager Plus by Zohocorp
View all CVEs affecting Manageengine Sharepoint Manager Plus →
Manageengine Sharepoint Manager Plus by Zohocorp
View all CVEs affecting Manageengine Sharepoint Manager Plus →
Manageengine Sharepoint Manager Plus by Zohocorp
View all CVEs affecting Manageengine Sharepoint Manager Plus →
Manageengine Sharepoint Manager Plus by Zohocorp
View all CVEs affecting Manageengine Sharepoint Manager Plus →
Manageengine Sharepoint Manager Plus by Zohocorp
View all CVEs affecting Manageengine Sharepoint Manager Plus →
Manageengine Sharepoint Manager Plus by Zohocorp
View all CVEs affecting Manageengine Sharepoint Manager Plus →
Manageengine Sharepoint Manager Plus by Zohocorp
View all CVEs affecting Manageengine Sharepoint Manager Plus →
Manageengine Sharepoint Manager Plus by Zohocorp
View all CVEs affecting Manageengine Sharepoint Manager Plus →
Manageengine Sharepoint Manager Plus by Zohocorp
View all CVEs affecting Manageengine Sharepoint Manager Plus →
Manageengine Sharepoint Manager Plus by Zohocorp
View all CVEs affecting Manageengine Sharepoint Manager Plus →
Manageengine Sharepoint Manager Plus by Zohocorp
View all CVEs affecting Manageengine Sharepoint Manager Plus →
Manageengine Sharepoint Manager Plus by Zohocorp
View all CVEs affecting Manageengine Sharepoint Manager Plus →
Manageengine Sharepoint Manager Plus by Zohocorp
View all CVEs affecting Manageengine Sharepoint Manager Plus →
Manageengine Sharepoint Manager Plus by Zohocorp
View all CVEs affecting Manageengine Sharepoint Manager Plus →
Manageengine Sharepoint Manager Plus by Zohocorp
View all CVEs affecting Manageengine Sharepoint Manager Plus →
Manageengine Sharepoint Manager Plus by Zohocorp
View all CVEs affecting Manageengine Sharepoint Manager Plus →
Manageengine Sharepoint Manager Plus by Zohocorp
View all CVEs affecting Manageengine Sharepoint Manager Plus →
Manageengine Sharepoint Manager Plus by Zohocorp
View all CVEs affecting Manageengine Sharepoint Manager Plus →
Manageengine Sharepoint Manager Plus by Zohocorp
View all CVEs affecting Manageengine Sharepoint Manager Plus →
Manageengine Sharepoint Manager Plus by Zohocorp
View all CVEs affecting Manageengine Sharepoint Manager Plus →
Manageengine Sharepoint Manager Plus by Zohocorp
View all CVEs affecting Manageengine Sharepoint Manager Plus →
Manageengine Sharepoint Manager Plus by Zohocorp
View all CVEs affecting Manageengine Sharepoint Manager Plus →
Manageengine Sharepoint Manager Plus by Zohocorp
View all CVEs affecting Manageengine Sharepoint Manager Plus →
Manageengine Sharepoint Manager Plus by Zohocorp
View all CVEs affecting Manageengine Sharepoint Manager Plus →
Manageengine Sharepoint Manager Plus by Zohocorp
View all CVEs affecting Manageengine Sharepoint Manager Plus →
Manageengine Sharepoint Manager Plus by Zohocorp
View all CVEs affecting Manageengine Sharepoint Manager Plus →
Manageengine Sharepoint Manager Plus by Zohocorp
View all CVEs affecting Manageengine Sharepoint Manager Plus →
Manageengine Sharepoint Manager Plus by Zohocorp
View all CVEs affecting Manageengine Sharepoint Manager Plus →
Manageengine Sharepoint Manager Plus by Zohocorp
View all CVEs affecting Manageengine Sharepoint Manager Plus →
Manageengine Sharepoint Manager Plus by Zohocorp
View all CVEs affecting Manageengine Sharepoint Manager Plus →
Manageengine Sharepoint Manager Plus by Zohocorp
View all CVEs affecting Manageengine Sharepoint Manager Plus →
Manageengine Sharepoint Manager Plus by Zohocorp
View all CVEs affecting Manageengine Sharepoint Manager Plus →
Manageengine Sharepoint Manager Plus by Zohocorp
View all CVEs affecting Manageengine Sharepoint Manager Plus →
Manageengine Sharepoint Manager Plus by Zohocorp
View all CVEs affecting Manageengine Sharepoint Manager Plus →
Manageengine Sharepoint Manager Plus by Zohocorp
View all CVEs affecting Manageengine Sharepoint Manager Plus →
Manageengine Sharepoint Manager Plus by Zohocorp
View all CVEs affecting Manageengine Sharepoint Manager Plus →
Manageengine Sharepoint Manager Plus by Zohocorp
View all CVEs affecting Manageengine Sharepoint Manager Plus →
Manageengine Sharepoint Manager Plus by Zohocorp
View all CVEs affecting Manageengine Sharepoint Manager Plus →
Manageengine Sharepoint Manager Plus by Zohocorp
View all CVEs affecting Manageengine Sharepoint Manager Plus →
Manageengine Sharepoint Manager Plus by Zohocorp
View all CVEs affecting Manageengine Sharepoint Manager Plus →
Manageengine Sharepoint Manager Plus by Zohocorp
View all CVEs affecting Manageengine Sharepoint Manager Plus →
Manageengine Sharepoint Manager Plus by Zohocorp
View all CVEs affecting Manageengine Sharepoint Manager Plus →
Manageengine Sharepoint Manager Plus by Zohocorp
View all CVEs affecting Manageengine Sharepoint Manager Plus →
Manageengine Sharepoint Manager Plus by Zohocorp
View all CVEs affecting Manageengine Sharepoint Manager Plus →
Manageengine Sharepoint Manager Plus by Zohocorp
View all CVEs affecting Manageengine Sharepoint Manager Plus →
Manageengine Sharepoint Manager Plus by Zohocorp
View all CVEs affecting Manageengine Sharepoint Manager Plus →
Manageengine Sharepoint Manager Plus by Zohocorp
View all CVEs affecting Manageengine Sharepoint Manager Plus →
Manageengine Sharepoint Manager Plus by Zohocorp
View all CVEs affecting Manageengine Sharepoint Manager Plus →
Manageengine Sharepoint Manager Plus by Zohocorp
View all CVEs affecting Manageengine Sharepoint Manager Plus →
Manageengine Sharepoint Manager Plus by Zohocorp
View all CVEs affecting Manageengine Sharepoint Manager Plus →
⚠️ Risk & Real-World Impact
Worst Case
Attackers gain administrative access to the SharePoint Manager Plus system, potentially compromising managed SharePoint environments and sensitive organizational data.
Likely Case
Unauthorized users access sensitive configuration data or user information, leading to privilege escalation within the SharePoint management system.
If Mitigated
With proper network segmentation and access controls, impact is limited to the SharePoint Manager Plus system itself.
🎯 Exploit Status
The vulnerability involves accessing sensitive data through the application interface. While specific exploit details aren't public, the CVSS score suggests relatively straightforward exploitation.
🛠️ Fix & Mitigation
✅ Official Fix
Patch Version: 4329
Vendor Advisory: https://www.manageengine.com/sharepoint-management-reporting/release-notes.html#4329
Restart Required: Yes
Instructions:
1. Download version 4329 or later from ManageEngine website. 2. Backup current installation. 3. Stop the SharePoint Manager Plus service. 4. Install the update. 5. Restart the service.
🔧 Temporary Workarounds
Network Segmentation
allRestrict access to SharePoint Manager Plus to trusted networks only
Access Control
allImplement strict authentication and authorization controls
🧯 If You Can't Patch
- Isolate the SharePoint Manager Plus system from untrusted networks
- Implement additional monitoring and alerting for suspicious access patterns
🔍 How to Verify
Check if Vulnerable:
Check the application version in the web interface or installation directoryCheck Version:
Check Help > About in the web interface or examine version files in installation directoryVerify Fix Applied:
Verify version is 4329 or higher in the application interface📡 Detection & Monitoring
Log Indicators:
- Unusual access patterns to sensitive endpoints
- Multiple failed authentication attempts followed by successful access
Network Indicators:
- Unexpected requests to sensitive API endpoints
- Traffic from unauthorized IP addresses
SIEM Query:
source="sharepoint-manager-plus" AND (uri="*/sensitive/*" OR status>=400 AND status<500)