6.5
CVE-2025-6239
- EPSS 0.87%
- Veröffentlicht 21.10.2025 12:25:21
- Zuletzt bearbeitet 24.10.2025 12:52:49
- Quelle 0fc0942c-577d-436f-ae8e-945763
- CVE-Watchlists
- Unerledigt
Information disclosure
Zohocorp ManageEngine Applications Manager versions 176800 and below are vulnerable to information disclosure in File/Directory monitor.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Zohocorp ≫ Manageengine Applications Manager Version < 17.6
Zohocorp ≫ Manageengine Applications Manager Version17.6 Update-
Zohocorp ≫ Manageengine Applications Manager Version17.6 Updatebuild176100
Zohocorp ≫ Manageengine Applications Manager Version17.6 Updatebuild176200
Zohocorp ≫ Manageengine Applications Manager Version17.6 Updatebuild176300
Zohocorp ≫ Manageengine Applications Manager Version17.6 Updatebuild176500
Zohocorp ≫ Manageengine Applications Manager Version17.6 Updatebuild176600
Zohocorp ≫ Manageengine Applications Manager Version17.6 Updatebuild176700
Zohocorp ≫ Manageengine Applications Manager Version17.6 Updatebuild176800
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. 
Login
Login| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.87% | 0.541 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| 0fc0942c-577d-436f-ae8e-945763c79b02 | 6.5 | 2.8 | 3.6 |
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
|
CWE-200 Exposure of Sensitive Information to an Unauthorized Actor
The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.
https://www.manageengine.com/products/applications_manager/security-updates/security-updates-cve-2025-6239.html