Skip to content

Critical SSO Vulnerability in Zoho ManageEngine Enables Account Takeovers

The Bottom Line: A critical SSO flaw in Zoho ManageEngine allows attackers to take over user accounts and potentially gain access to administrative functions.

A critical security vulnerability exists in the Single Sign-On mechanism of multiple Zoho ManageEngine products from Zoho Corp., enabling attackers to perform unauthorized account takeovers.

The vulnerability affects multiple Zoho ManageEngine products and resides in the SSO authentication logic. Attackers can exploit this to gain access to user accounts without valid credentials.

For CISOs, this flaw is critical because ManageEngine solutions are frequently deployed centrally for IT management and infrastructure monitoring. A successful account takeover enables attackers to potentially access administrative functions, system configurations, and possibly additional network resources.

Immediate action is necessary: review installed ManageEngine versions, apply available security updates, and monitor suspicious authentication patterns in logs. The security team should verify whether unauthorized account activities have occurred.


Source: www.heise.de · Published June 24, 2026
Lumi AI News — AI-assisted curation in accordance with Art. 50 EU AI Act. Paraphrase and classification by Lumi News Pipeline v1.7.1.

Share on: