cbcvebase.
CVE-2025-3444
published 2025-05-22

CVE-2025-3444: Zohocorp ManageEngine ServiceDesk Plus MSP and SupportCenter Plus versions below 14920 are vulnerable to authenticated Local File Inclusion (LFI) in the Admin…

PriorityP336medium6.5CVSS 3.1
AVNACLPRLUINSUCHINAN
EPSS
1.23%
65.1th percentile
Zohocorp ManageEngine ServiceDesk Plus MSP and SupportCenter Plus versions below 14920 are vulnerable to authenticated Local File Inclusion (LFI) in the Admin module, where help card content is loaded.

Affected

22 ranges
VendorProductVersion rangeFixed in
manageengineservicedesk_plus_msp< 1492014920
manageenginesupportcenter_plus< 1492014920
msrckernel-5.10.57.1-1.cm1.aarch64.rpm_on_cbl_mariner_1.0_arm
msrckernel-5.10.57.1-1.cm1.x86_64.rpm_on_cbl_mariner_1.0_x64
msrckernel-debuginfo-5.10.57.1-1.cm1.aarch64.rpm_on_cbl_mariner_1.0_arm
msrckernel-debuginfo-5.10.57.1-1.cm1.x86_64.rpm_on_cbl_mariner_1.0_x64
msrckernel-devel-5.10.57.1-1.cm1.aarch64.rpm_on_cbl_mariner_1.0_arm
msrckernel-devel-5.10.57.1-1.cm1.x86_64.rpm_on_cbl_mariner_1.0_x64
msrckernel-docs-5.10.57.1-1.cm1.aarch64.rpm_on_cbl_mariner_1.0_arm
msrckernel-docs-5.10.57.1-1.cm1.x86_64.rpm_on_cbl_mariner_1.0_x64
msrckernel-drivers-accessibility-5.10.57.1-1.cm1.aarch64.rpm_on_cbl_mariner_1.0_arm
msrckernel-drivers-accessibility-5.10.57.1-1.cm1.x86_64.rpm_on_cbl_mariner_1.0_x64
msrckernel-drivers-sound-5.10.57.1-1.cm1.aarch64.rpm_on_cbl_mariner_1.0_arm
msrckernel-drivers-sound-5.10.57.1-1.cm1.x86_64.rpm_on_cbl_mariner_1.0_x64
msrckernel-dtb-5.10.57.1-1.cm1.aarch64.rpm_on_cbl_mariner_1.0_arm
msrckernel-oprofile-5.10.57.1-1.cm1.x86_64.rpm_on_cbl_mariner_1.0_x64
msrckernel-tools-5.10.57.1-1.cm1.aarch64.rpm_on_cbl_mariner_1.0_arm
msrckernel-tools-5.10.57.1-1.cm1.x86_64.rpm_on_cbl_mariner_1.0_x64
zohocorpmanageengine_servicedesk_plus_msp<= 14.8
zohocorpmanageengine_servicedesk_plus_msp
zohocorpmanageengine_supportcenter_plus<= 14.8
zohocorpmanageengine_supportcenter_plus

CVSS provenance

nvdv3.16.5MEDIUMCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
vendor_msrc7.8HIGH
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.

CVE-2025-3444 — Unrestricted File Upload | cvebase