← back
CVE-2025-9226

Stored XSS

CVSS 4.6 MEDIUMEPSS 0.4%CWE-79
Zohocorp ManageEngine OpManager, NetFlow Analyzer, and OpUtils versions prior to 128582 are affected by a stored cross-site scripting vulnerability in the Subnet Details.
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N
Affected products
Zohocorp · ManageEngine NetFlow AnalyzerZohocorp · ManageEngine OpManagerZohocorp · ManageEngine OpUtils

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://www.manageengine.com/itom/advisory/cve-2025-9226.html