CNNVD-202601-2300 Information

Jan 13, 2026 cve

CNNVD ID

CNNVD-202601-2300

CVE-2025-11250

CNNVD Published: 2026-01-13

Description (Chinese)

ZOHO ManageEngine ADSelfService Plus是美国卓豪（ZOHO）公司的针对 Active Directory 和云应用程序的集成式自助密码管理和单点登录解决方案。 Zoho ManageEngine ADSelfService Plus 6519之前版本存在安全漏洞，该漏洞源于过滤器配置不当，可能导致身份验证绕过。

Description (English)

ZOHO ManageEngine ADSelfService Plus is an integrated self-service password management and single-point login solution for Active Directory and cloud applications from ZOHO. Zoho ManageEngine ADSelfService Plus 6519 had a security loophole, which stemmed from the inappropriate configuration of the filter and could lead to a circumvention of identification.

Hazard Level

Low

Vulnerability Type

其他

Affected Vendor

卓豪

Published

2026-01-13

Last Modified

2026-02-24

References

https://www.manageengine.com/products/self-service-password/advisory/CVE-2025-11250.html

Patch

https://www.manageengine.com/products/self-service-password/advisory/CVE-2025-11250.html

Share on: