CVE-2025-3444 | Zoho ManageEngine ServiceDesk Plus MSP/SupportCenter Plus up to 14919 Admin Module unrestricted upload

Inserito da Angelo Barbosa | Mag 22, 2025 | CVE

A vulnerability classified as critical has been found in Zoho ManageEngine ServiceDesk Plus MSP and SupportCenter Plus up to 14919. Affected is an unknown function of the component Admin Module. The manipulation leads to unrestricted upload.

This vulnerability is traded as CVE-2025-3444. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-3444 | Zoho ManageEngine ServiceDesk Plus MSP/SupportCenter Plus up to 14919 Admin Module unrestricted upload

Post correlati

CVE-2025-1164 | code-projects Police FIR Record Management System 1.0 stack-based overflow

CVE-2024-54159 | stalld up to 1.19.7 /tmp/rtthrottle symlink

CVE-2024-50433 | wowDevs Sky Addons for Elementor Plugin up to 2.5.15 on WordPress cross site scripting

CVE-2025-1638 | Edge-Themes Alloggio Membership Plugin up to 1.1 on WordPress authentication bypass