CVE-2025-11670

NTLM Hash Exposure Vulnerability

CVSS 6.4 MEDIUMEPSS 0.4%CWE-200

Zohocorp ManageEngine ADManager Plus versions before 8025 are vulnerable to NTLM Hash Exposure. This vulnerability is exploitable only by technicians who have the “Impersonate as Admin” option enabled.

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N

Produtos afetados

Zohocorp · ManageEngine ADManager Plus

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://www.manageengine.com/products/ad-manager/admanager-kb/cve-2025-11670.html