VDB

CVE-2025-7473

CVE-2025-7473 PUBLISHED CVSS 5.199999809265137 MEDIUM

Zohocorp ManageEngine EndPoint Central versions 11.4.2516.1 and prior are vulnerable to XML Injection.

EPSS 0.07% · 22.6th percentile

Risk Scores

CVSS 3.1
5.199999809265137
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:L
EPSS Score
0.07%
22.6th percentile

Affected Products

VendorProductVersions
ZohocorpEndpoint Central0
zohocorpmanageengine_endpoint_central0

Timeline

  • Oct 21, 2025 EPSS Score
  • Oct 21, 2025 CVE Published
  • Oct 21, 2025 PoC Published
  • Oct 21, 2025 PoC Published
  • Oct 27, 2025 EPSS Score
  • Nov 2, 2025 EPSS Score
  • Nov 8, 2025 EPSS Score
  • Nov 14, 2025 EPSS Score
  • Nov 19, 2025 EPSS Score
  • Nov 25, 2025 EPSS Score
  • Nov 30, 2025 CVE Updated
  • Dec 1, 2025 EPSS Score
Open in Interactive Console →
$ Console Community · 100/wk Open console ›