vulnerability
Zoho ManageEngine ADSelfService Plus: CVE-2025-11250: Authentication Bypass Vulnerability
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 9 | (AV:N/AC:L/Au:N/C:C/I:C/A:N) | Oct 1, 2025 | Jan 13, 2026 | Jan 14, 2026 |
Severity
9
CVSS
(AV:N/AC:L/Au:N/C:C/I:C/A:N)
Published
Oct 1, 2025
Added
Jan 13, 2026
Modified
Jan 14, 2026
Description
Zohocorp ManageEngine ADSelfService Plus versions before 6519 are vulnerable toAuthentication Bypass due to improper filter configurations.
Solution
zoho-manageengine-adselfservice-plus-upgrade-latest
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.