PT-2026-5398 · Manageengine · Netflow Analyzer+2
Published
2026-01-30
·
Updated
2026-01-30
·
CVE-2025-9226
CVSS v3.1
4.6
Medium
| Vector | AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N |
Name of the Vulnerable Software and Affected Versions
ManageEngine OpManager, NetFlow Analyzer, and OpUtils versions prior to 128582
Description
The software is affected by a stored cross-site scripting issue in the Subnet Details functionality. The issue allows for the injection of malicious scripts.
Recommendations
Update to version 128582 or later.
Fix
XSS
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Manageengine Opmanager
Netflow Analyzer
Oputils