PT-2025-42878 · Zohocorp · Manageengine Endpoint Central

Published

2025-04-24

·

Updated

2025-10-21

·

CVE-2025-7473

CVSS v3.1
5.3
VectorAV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
Name of the Vulnerable Software and Affected Versions Zohocorp ManageEngine EndPoint Central versions 11.4.2516.1 and prior
Description The software is susceptible to XML Injection. The issue affects Zohocorp ManageEngine EndPoint Central.
Recommendations Update to a version later than 11.4.2516.1.

Fix

Weakness Enumeration

CWE-91

Related Identifiers

BDU:2026-00236
CVE-2025-7473

Affected Products

Manageengine Endpoint Central