CNNVD-202601-5032 Information
CNNVD ID
CNNVD-202601-5032
Related CVE
- CNNVD Published: 2026-01-30
Description (Chinese)
ZOHO ManageEngine Netflow Analyzer等都是美国卓豪(ZOHO)公司的产品。ZOHO ManageEngine Netflow Analyzer是一套基于Web的带宽监控工具。ZOHO ManageEngine OpManager是一款综合性网络监控软件。ZOHO ManageEngine OpUtils是 IP 地址和交换机端口管理软件,旨在帮助工程师有效地监控、诊断和排除 IT 资源故障。 ZOHO ManageEngine OpManager、NetFlow Analyzer和OpUtils 128582之前版本存在安全漏洞,该漏洞源于子网详情中存在存储型跨站脚本漏洞。
Description (English)
ZOHO ManageEngine Netflow Analyzer and others are products of ZOHO. ZOHO ManageEngine Netflow Analyzer is a Web-based bandwidth surveillance tool. ZOHO ManageEngine OpManager is a comprehensive web monitoring software. ZOHO ManageEngine OpUtils is an IP address and switch port management software designed to assist engineers in effectively monitoring, diagnosing and eliminating IT resource failures. ZOHO ManageEngine OpManager, NetFlow Analyzer and OpUtils 128582 had a security loophole, which stemmed from the storage of cross-site scripts in subnet details.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
卓豪
Published
2026-01-30
Last Modified
2026-02-24
References
https://www.manageengine.com/itom/advisory/cve-2025-9226.html https://access.redhat.com/security/cve/cve-2025-9226
Patch
https://www.manageengine.com/network-monitoring/service-packs.html?CVE-2025-9226
Share on: