{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-05-06T05:20:11.138","vulnerabilities":[{"cve":{"id":"CVE-2025-3444","sourceIdentifier":"0fc0942c-577d-436f-ae8e-945763c79b02","published":"2025-05-22T11:15:52.257","lastModified":"2025-06-17T20:18:53.007","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Zohocorp ManageEngine ServiceDesk Plus MSP and SupportCenter Plus versions below 14920 are vulnerable to authenticated Local File Inclusion (LFI) in the Admin module, where help card content is loaded."},{"lang":"es","value":"Las versiones de Zohocorp ManageEngine ServiceDesk Plus MSP y SupportCenter Plus anteriores a 14920 son vulnerables a la inclusión de archivos locales (LFI) autenticados en el módulo de administración, donde se carga el contenido de la tarjeta de ayuda."}],"metrics":{"cvssMetricV31":[{"source":"0fc0942c-577d-436f-ae8e-945763c79b02","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":3.6}]},"weaknesses":[{"source":"0fc0942c-577d-436f-ae8e-945763c79b02","type":"Secondary","description":[{"lang":"en","value":"CWE-434"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:*:*:*:*:*:*:*:*","versionEndIncluding":"14.8","matchCriteriaId":"F0FFFD50-8AD8-4295-8A53-40146BE6D8AC"},{"vulnerable":true,"criteria":"cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:14.9:14900:*:*:*:*:*:*","matchCriteriaId":"4B2B72D2-5FD7-4C7F-BE3F-CDA5064E025A"},{"vulnerable":true,"criteria":"cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:14.9:14910:*:*:*:*:*:*","matchCriteriaId":"D0591674-38E9-4A24-8998-F00D737ECDE7"},{"vulnerable":true,"criteria":"cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:*:*:*:*:*:*:*:*","versionEndIncluding":"14.8","matchCriteriaId":"58ED6DA7-4212-4CD1-A428-067D2A30F7A1"},{"vulnerable":true,"criteria":"cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:14.9:14900:*:*:*:*:*:*","matchCriteriaId":"B9AABAF1-F12C-4F56-92DD-D93B91663045"},{"vulnerable":true,"criteria":"cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:14.9:14910:*:*:*:*:*:*","matchCriteriaId":"9F3C4C6A-9014-4F33-9B8D-F9B2437FF631"}]}]}],"references":[{"url":"https://www.manageengine.com/products/service-desk-msp/cve-2025-3444.html","source":"0fc0942c-577d-436f-ae8e-945763c79b02","tags":["Vendor Advisory"]}]}}]}