CVE-2025-3835

Published: Jun 9, 2025Modified: Sep 29, 2025

9.6

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H

Exploitability: 2.8 / Impact: 6.0

Source: 0fc0942c-577d-436f-ae8e-945763c79b02 (Secondary)

Description

Zohocorp ManageEngine Exchange Reporter Plus versions 5721 and prior are vulnerable to Remote code execution in the Content Search module.

Products: Zohocorp: Manageengine Exchange Reporter Plus

1 product

Configuration A

23 vulnerable

Vulnerable Software	Affected Versions
Zohocorp Manageengine Exchange Reporter Plus	Before 5.7
Zohocorp Manageengine Exchange Reporter Plus	Version 5.7
Zohocorp Manageengine Exchange Reporter Plus	Version 5.7 5700
Zohocorp Manageengine Exchange Reporter Plus	Version 5.7 5701
Zohocorp Manageengine Exchange Reporter Plus	Version 5.7 5702
Zohocorp Manageengine Exchange Reporter Plus	Version 5.7 5703
Zohocorp Manageengine Exchange Reporter Plus	Version 5.7 5704
Zohocorp Manageengine Exchange Reporter Plus	Version 5.7 5705
Zohocorp Manageengine Exchange Reporter Plus	Version 5.7 5706
Zohocorp Manageengine Exchange Reporter Plus	Version 5.7 5707
Zohocorp Manageengine Exchange Reporter Plus	Version 5.7 5708
Zohocorp Manageengine Exchange Reporter Plus	Version 5.7 5709
Zohocorp Manageengine Exchange Reporter Plus	Version 5.7 5710
Zohocorp Manageengine Exchange Reporter Plus	Version 5.7 5711
Zohocorp Manageengine Exchange Reporter Plus	Version 5.7 5712
Zohocorp Manageengine Exchange Reporter Plus	Version 5.7 5713
Zohocorp Manageengine Exchange Reporter Plus	Version 5.7 5714
Zohocorp Manageengine Exchange Reporter Plus	Version 5.7 5715
Zohocorp Manageengine Exchange Reporter Plus	Version 5.7 5717
Zohocorp Manageengine Exchange Reporter Plus	Version 5.7 5718
Zohocorp Manageengine Exchange Reporter Plus	Version 5.7 5719
Zohocorp Manageengine Exchange Reporter Plus	Version 5.7 5720
Zohocorp Manageengine Exchange Reporter Plus	Version 5.7 5721

Source: 0fc0942c-577d-436f-ae8e-945763c79b02

Vendor Advisory

No history available yet.