cvedb.io
CVE-2025-1723
HIGH · CVSS 8.1
EPSS exploitation probability: 0%
Published 2025-03-03T08:15:15.717 · Last modified 2026-06-17T08:39:40.037

Summary

Zohocorp ManageEngine ADSelfService Plus versions 6510 and below are vulnerable to account takeover due to the session mishandling. Valid account holders in the setup only have the potential to exploit this bug.

Affected products

zohocorp — manageengine_adselfservice_plus

Does this affect you?

Add your gear to cvedb and we'll alert you only when zohocorp ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.