Zoho · Zoho Manageengine Supportcenter Plus · CVE-2022-36412
**Name of the Vulnerable Software and Affected Versions**
Zoho ManageEngine SupportCenter Plus versions prior to 11023
**Description**
The issue concerns authentication bypass in V3 API requests. This means an API request can be executed with the credentials of a user who authenticated in the past.
**Recommendations**
For versions prior to 11023, update to version 11023 or later to resolve the authentication bypass issue in V3 API requests.