CVE-2025-9435
MEDIUMZohocorp ManageEngine ADManager Plus <7230 - Path Traversal
Title source: llmDescription
Zohocorp ManageEngine ADManager Plus versions below 7230 are vulnerable to Path Traversal in the User Management module
Exploits (1)
Scores
CVSS v3
5.5
EPSS
0.0002
EPSS Percentile
3.4%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L
Classification
CWE
CWE-22
Status
published
Affected Products (13)
zohocorp/manageengine_admanager_plus
< 7.2
zohocorp/manageengine_admanager_plus
zohocorp/manageengine_admanager_plus
zohocorp/manageengine_admanager_plus
zohocorp/manageengine_admanager_plus
zohocorp/manageengine_admanager_plus
zohocorp/manageengine_admanager_plus
zohocorp/manageengine_admanager_plus
zohocorp/manageengine_admanager_plus
zohocorp/manageengine_admanager_plus
zohocorp/manageengine_admanager_plus
zohocorp/manageengine_admanager_plus
zohocorp/manageengine_admanager_plus
Timeline
Published
Jan 13, 2026
Tracked Since
Feb 18, 2026