Zohocorp Endpoint Central vulnerabilities
3 known vulnerabilities affecting zohocorp/endpoint_central.
Total CVEs
3
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM1LOW1
Vulnerabilities
Page 1 of 1
CVE-2025-7473MEDIUMCVSS 5.3≤ 11.4.2516.12025-10-21
CVE-2025-7473 [MEDIUM] CWE-91 CVE-2025-7473: Zohocorp ManageEngine EndPoint Central versions 11.4.2516.1 and prior are vulnerable to XML Injectio
Zohocorp ManageEngine EndPoint Central versions 11.4.2516.1 and prior are vulnerable to XML Injection.
cvelistv5nvd
CVE-2025-5496LOWCVSS 3.3fixed in 11.4.2508.14fixed in 11.4.2516.06+1 more2025-10-21
CVE-2025-5496 [LOW] CWE-269 CVE-2025-5496: ZohoCorp ManageEngine Endpoint Central versions earlier than 11.4.2508.14, 11.4.2516.06, and 11.4.25
ZohoCorp ManageEngine Endpoint Central versions earlier than 11.4.2508.14, 11.4.2516.06, and 11.4.2518.01 are affected by an arbitrary file deletion vulnerability in the agent setup component.
cvelistv5nvd
CVE-2025-5494HIGHCVSS 7.8≤ 11.4.2500.252025-09-25
CVE-2025-5494 [LOW] CWE-269 CVE-2025-5494: ZohoCorp ManageEngine Endpoint Central was impacted by an improper privilege management issue in the
ZohoCorp ManageEngine Endpoint Central was impacted by an improper privilege management issue in the agent setup.
This issue affects Endpoint Central: through 11.4.2500.25, through 11.4.2508.13.
cvelistv5nvd