CVE-2025-1723
published 2025-03-03CVE-2025-1723: Zohocorp ManageEngine ADSelfService Plus versions 6510 and below are vulnerable to account takeover due to the session mishandling. Valid account holders in…
PriorityP347high8.1CVSS 3.1
AVNACLPRLUINSUCHIHAN
EPSS
1.43%
69.6th percentile
Zohocorp ManageEngine ADSelfService Plus versions 6510 and below are vulnerable to account takeover due to the session mishandling. Valid account holders in the setup only have the potential to exploit this bug.
Affected
5 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| linux | linux_kernel | >= 0 < 6.12.60 | 6.12.60 |
| linux | linux_kernel | >= 6.13.0 < 6.17.10 | 6.17.10 |
| manageengine | adselfservice_plus | < 6511 | 6511 |
| zohocorp | manageengine_adselfservice_plus | < 6.5 | 6.5 |
| zohocorp | manageengine_adselfservice_plus | — | — |
CVSS provenance
nvdv3.18.1HIGHCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
vendor_redhat5.5MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
OSV
idpf: fix possible vport_config NULL pointer deref in remove
osv·2025-12-16
CVE-2025-68213 idpf: fix possible vport_config NULL pointer deref in remove
idpf: fix possible vport_config NULL pointer deref in remove
In the Linux kernel, the following vulnerability has been resolved:
idpf: fix possible vport_config NULL pointer deref in remove
Attempting to remove the driver will cause a crash in cases where
the vport failed to initialize. Following trace is from an instance where
the driver failed during an attempt to create a VF:
[ 1661.543624] idpf 0000:84:00.7: Device HW Reset initiated
[ 1722.923726] idpf 0000:84:00.7: Transaction timed-out (op:1 cookie:2900 vc_op:1 salt:29 timeout:60000ms)
[ 1723.353263] BUG: kernel NULL pointer dereference, address: 0000000000000028
...
[ 1723.358472] RIP: 0010:idpf_remove+0x11c/0x200 [idpf]
...
[ 1723.364973] Call Trace:
[ 1723.365475]
[ 1723.365972] pci_device_remove+0x42/0xb0
[ 1723.366481] devic
GHSA
GHSA-qfwr-vpjx-v989: Zohocorp ManageEngine ADSelfService Plus versions 6510 and below are vulnerable to account takeover due to the session mishandling
ghsa_unreviewed·2025-03-03
CVE-2025-1723 [HIGH] CWE-287 GHSA-qfwr-vpjx-v989: Zohocorp ManageEngine ADSelfService Plus versions 6510 and below are vulnerable to account takeover due to the session mishandling
Zohocorp ManageEngine ADSelfService Plus versions 6510 and below are vulnerable to account takeover due to the session mishandling. Valid account holders in the setup only have the potential to exploit this bug.
Red Hat
kernel: idpf: fix possible vport_config NULL pointer deref in remove
vendor_redhat·2025-12-16·CVSS 5.5
CVE-2025-68213 [MEDIUM] CWE-476 kernel: idpf: fix possible vport_config NULL pointer deref in remove
kernel: idpf: fix possible vport_config NULL pointer deref in remove
In the Linux kernel, the following vulnerability has been resolved:
idpf: fix possible vport_config NULL pointer deref in remove
Attempting to remove the driver will cause a crash in cases where
the vport failed to initialize. Following trace is from an instance where
the driver failed during an attempt to create a VF:
[ 1661.543624] idpf 0000:84:00.7: Device HW Reset initiated
[ 1722.923726] idpf 0000:84:00.7: Transaction timed-out (op:1 cookie:2900 vc_op:1 salt:29 timeout:60000ms)
[ 1723.353263] BUG: kernel NULL pointer dereference, address: 0000000000000028
...
[ 1723.358472] RIP: 0010:idpf_remove+0x11c/0x200 [idpf]
...
[ 1723.364973] Call Trace:
[ 1723.365475]
[ 1723.365972] pci_device_remove+0x42/0xb0
[ 1723.366481]
No detection rules found.
No public exploits indexed.
Wiz
CVE-2026-1367 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 5.5
CVE-2026-1367 [MEDIUM] CVE-2026-1367 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2026-1367 :
Zoho ManageEngine ADSelfService Plus vulnerability analysis and mitigation
Zohocorp ManageEngine ADSelfService Plus versions 6522 and below are vulnerable to authenticated SQL Injection in the search report option.
Source : NVD
## 8.3
Score
Published February 23, 2026
Severity HIGH
CNA Score 8.3
Affected Technologies
Zoho ManageEngine ADSelfService Plus
Has Public Exploit No
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) 54.7
Exploitation Probability (EPSS) 0.3
Affected packages and libraries
cpe:2.3:a:zohocorp:manageengine_adselfservice_plus
Sources
NVD
Windows Severity HIGH Has Fix Added at: Feb 24, 2026
## Get a CVE risk assessment
Get a prioritized view of CVEs in your clou
Wiz
CVE-2025-11250 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 5.5
CVE-2025-11250 [MEDIUM] CVE-2025-11250 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2025-11250 :
Zoho ManageEngine ADSelfService Plus vulnerability analysis and mitigation
Zohocorp ManageEngine ADSelfService Plus versions before 6519 are vulnerable to Authentication Bypass due to improper filter configurations.
Source : NVD
## 9.1
Score
Published January 13, 2026
Severity CRITICAL
CNA Score 9.1
Affected Technologies
Zoho ManageEngine ADSelfService Plus
Has Public Exploit No
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) 30.2
Exploitation Probability (EPSS) 0.1
Affected packages and libraries
cpe:2.3:a:zohocorp:manageengine_adselfservice_plus
Sources
Windows Severity CRITICAL Has Fix Added at: Jan 14, 2026
Windows Severity CRITICAL Has Fix Added at: Jan 30, 2026
## Get a CVE
Bugzilla
CVE-2025-68213 kernel: idpf: fix possible vport_config NULL pointer deref in remove
bugzilla·2025-12-16
CVE-2025-68213 [MEDIUM] CVE-2025-68213 kernel: idpf: fix possible vport_config NULL pointer deref in remove
CVE-2025-68213 kernel: idpf: fix possible vport_config NULL pointer deref in remove
In the Linux kernel, the following vulnerability has been resolved:
idpf: fix possible vport_config NULL pointer deref in remove
Attempting to remove the driver will cause a crash in cases where
the vport failed to initialize. Following trace is from an instance where
the driver failed during an attempt to create a VF:
[ 1661.543624] idpf 0000:84:00.7: Device HW Reset initiated
[ 1722.923726] idpf 0000:84:00.7: Transaction timed-out (op:1 cookie:2900 vc_op:1 salt:29 timeout:60000ms)
[ 1723.353263] BUG: kernel NULL pointer dereference, address: 0000000000000028
...
[ 1723.358472] RIP: 0010:idpf_remove+0x11c/0x200 [idpf]
...
[ 1723.364973] Call Trace:
[ 1723.365475]
[ 1723.365972] pci_device_remove+0x42/0x
2025-03-03
Published