CVE-2025-11248

Sensitive Information Logged

CVSS 3.2 LOWEPSS 0.5%CWE-532

ZohoCorp ManageEngine Endpoint Central versions prior to 11.4.2528.05 are vulnerable to a sensitive information logging issue. An authenticated user with access to the logs could potentially obtain the sensitive agent token.

CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:L/I:N/A:N

Productos afectados

Zohocorp · ManageEngine Endpoint Central

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

https://www.manageengine.com/products/desktop-central/CVE-2025-11248.html