CNNVD-202510-2767 Information

Oct 21, 2025 cve

CNNVD ID

CNNVD-202510-2767

CVE-2025-5496

CNNVD Published: 2025-10-21

Description (Chinese)

ZOHO ManageEngine Endpoint Central是美国卓豪（ZOHO）公司的一个桌面管理系统。 ZOHO ManageEngine Endpoint Central 11.4.2508.14之前版本、11.4.2516.06和11.4.2518.01存在安全漏洞，该漏洞源于agent setup组件存在任意文件删除漏洞。

Description (English)

ZOHO ManageEngine Endpoint Central is a desktop management system for ZOHO. ZOHO ManageEngine Endpoint Central 11.4.2508.14, 11.4.2516.06 and 11.4.2518.01 have security loopholes, which stem from the existence of arbitrary document removal gaps in the components of angent setup.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

卓豪

Published

2025-10-21

Last Modified

2026-02-24

References

https://www.manageengine.com/products/desktop-central/kb/arbitrary-file-deletion-allows-local-privilege-escalation.html

Patch

https://www.manageengine.com/products/desktop-central/kb/arbitrary-file-deletion-allows-local-privilege-escalation.html

Share on: