CVE-2025-5494
HIGH WAF: Low
CVSS 7.8
Published: 2025-09-25
CWE-269
ZohoCorp ManageEngine Endpoint Central was impacted by an improper privilege management issue in the agent setup. This issue affects Endpoint Central: through 11.4.2500.25, through 11.4.2508.13.
WAF Coverage Analysis
Improper Privilege Management
Low WAF Coverage
OWASP: A01:2021 Broken Access Control
Affected Software
| Vendor | Product | Version |
|---|---|---|
| zohocorp | manageengine_endpoint_central | up to 11.4.2500.26 |
| zohocorp | manageengine_endpoint_central | 11.4.2508.01 - 11.4.2508.14 |
References
- www.manageengine.com (Vendor Advisory)