PT-2025-24420 · Zoho · Netflow Analyzer+4
Andrey Alekseev
·
Published
2025-04-02
·
Updated
2025-06-09
·
CVE-2025-41437
CVSS v2.0
5.0
Medium
| Vector | AV:N/AC:L/Au:N/C:P/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Zohocorp ManageEngine OpManager, NetFlow Analyzer, Network Configuration Manager, Firewall Analyzer, and OpUtils versions 128565 and below
Description
The issue concerns a Reflected XSS vulnerability on the login page.
Recommendations
For versions 128565 and below, update to a version above 128565 to resolve the issue.
Fix
XSS
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Firewall Analyzer
Netflow Analyzer
Network Configuration Manager
Oputils
Zoho Manageengine Opmanager