CVE-2025-3834

Name of the Vulnerable Software and Affected Versions: Zohocorp ManageEngine ADAudit Plus versions 8510 and prior

Description: The issue concerns an authenticated SQL injection in the OU History report. This allows for potential exploitation where an attacker could manipulate database queries.

Recommendations: For versions 8510 and prior, consider restricting access to the OU History report until a fix is available. As a temporary workaround, avoid using the OU History report feature in affected versions to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.