What the vulnerability does
01Description
Zohocorp ManageEngine Applications Manager versions 176800 and below are vulnerable to information disclosure in File/Directory monitor.
CVSS base score
6.5/10
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Key dates
02Disclosure timeline
October 21, 2025
CVE published
October 21, 2025
Record updated
External resources
03References
Related vulnerabilities
04Related CVE
CVE-2024-39919 Capture screenshot of localhost web services (unauthenticated pages) in @jmondi/url-to-png
CVE-2022-46651 Apache Airflow: Security vulnerability on AirFlow Connections
CVE-2018-0105
CVE-2024-47868 Several components’ post-process steps may allow arbitrary file leaks in Gradio
CVE-2024-0909 Anonymous Restricted Content <= 1.6.2 - Protection Mechanism Bypass
