Home

Description

Zohocorp ManageEngine ADManager Plus versions below 7230 are vulnerable to Path Traversal in the User Management module

PUBLISHED Reserved 2025-08-25 | Published 2026-01-13 | Updated 2026-01-13 | Assigner Zohocorp




MEDIUM: 5.5CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L

Problem types

CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

Product status

Default status
unaffected

Any version before 7230
affected

References

www.manageengine.com/...ager/admanager-kb/cve-2025-9435.html

cve.org (CVE-2025-9435)

nvd.nist.gov (CVE-2025-9435)

Download JSON