ManageEngine ADSelfService Plus < build 6514 SQLi

🗓️ 15 May 2025 00:00:00Reported by TenableType

ManageEngine ADSelfService Plus prior to build 6514 is vulnerable to authenticated SQL injection.

Reporter	Title	Published	Views	Family All 11
Circl	CVE-2025-3833	14 May 202511:31	–	circl
CNNVD	ZOHO ManageEngine ADSelfService Plus SQL注入漏洞	14 May 202500:00	–	cnnvd
CVE	CVE-2025-3833	14 May 202511:00	–	cve
Cvelist	CVE-2025-3833 SQL Injection	14 May 202511:00	–	cvelist
EUVD	EUVD-2025-14871	3 Oct 202520:07	–	euvd
NCSC	Vulnerabilities fixed in Zoho ManageEngine	14 May 202513:19	–	ncsc
NVD	CVE-2025-3833	14 May 202511:16	–	nvd
OSV	CVE-2025-3833	14 May 202511:16	–	osv
Positive Technologies	PT-2025-21147 · Zohocorp · Zoho Manageengine Adselfservice Plus	14 May 202500:00	–	ptsecurity
RedhatCVE	CVE-2025-3833	16 May 202511:03	–	redhatcve

Source	Link
nessus	www.nessus.org/u
cve	www.cve.mitre.org/cgi-bin/cvename.cgi

#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
##

include('compat.inc');

if (description)
{
  script_id(236784);
  script_version("1.1");
  script_set_attribute(attribute:"plugin_modification_date", value:"2025/05/15");

  script_cve_id("CVE-2025-3833");
  script_xref(name:"IAVA", value:"2025-A-0355");

  script_name(english:"ManageEngine ADSelfService Plus < build 6514 SQLi");

  script_set_attribute(attribute:"synopsis", value:
"A web application is affected by an authenticated SQL injection vulnerability.");
  script_set_attribute(attribute:"description", value:
"According to its self-reported version, the ManageEngine ADSelfService Plus application running on the remote host 
is prior to build 6514. It is, therefore, affected by an authenticated SQL injection vulnerability in the MFA reports.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported build
number.");
  # https://www.manageengine.com/products/self-service-password/advisory/CVE-2025-3833.html
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?f601b857");
  script_set_attribute(attribute:"solution", value:
"Upgrade to ManageEngine ADSelfService Plus build 6514 or later.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:S/C:C/I:C/A:N");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2025-3833");

  script_set_attribute(attribute:"vuln_publication_date", value:"2025/04/22");
  script_set_attribute(attribute:"patch_publication_date", value:"2025/04/22");
  script_set_attribute(attribute:"plugin_publication_date", value:"2025/05/15");

  script_set_attribute(attribute:"plugin_type", value:"remote");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:zohocorp:manageengine_adselfservice_plus");
  script_set_attribute(attribute:"stig_severity", value:"I");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"CGI abuses");

  script_copyright(english:"This script is Copyright (C) 2025 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("manageengine_adselfservice_detect.nasl");
  script_require_keys("installed_sw/ManageEngine ADSelfService Plus");
  script_require_ports("Services/www", 8888);

  exit(0);
}

include('vcf.inc');
include('vcf_extras_zoho.inc');
include('http.inc');

var app, app_info, constraints, port;

app = 'ManageEngine ADSelfService Plus';

port = get_http_port(default:8888);

app_info = vcf::zoho::fix_parse::get_app_info(
  app: app,
  port:  port,
  webapp: TRUE
);

constraints = [
  { 'fixed_version':'6514', 'fixed_display':'build 6514'}
];

vcf::check_version_and_report(
  app_info: app_info,
  constraints: constraints,
  severity: SECURITY_HOLE,
  flags: {'sqli':true}
);

15 May 2025 00:00Current

5.8Medium risk

Vulners AI Score5.8

CVSS 3.18.1

EPSS0.05134

SSVC