CNNVD-202510-2768 Information

CNNVD ID

CNNVD-202510-2768

Related CVE

CVE-2025-7473

• CNNVD Published: 2025-10-21

Description (Chinese)

ZOHO ManageEngine Endpoint Central是美国卓豪（ZOHO）公司的一个桌面管理系统。 ZOHO ManageEngine Endpoint Central 11.4.2516.1及之前版本存在安全漏洞，该漏洞源于容易受到XML注入攻击。

Description (English)

ZOHO ManageEngine Endpoint Central is a desktop management system for ZOHO. ZOHO ManageEngine Endpoint Central 11.4.2516.1 and previous versions have security loopholes that stem from vulnerability to XML injections.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

卓豪

Published

2025-10-21

Last Modified

2026-02-24

References

https://www.manageengine.com/products/desktop-central/parsing-xml-data.html

Patch

https://www.manageengine.com/products/desktop-central/parsing-xml-data.html