{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-05-02T13:42:11.674","vulnerabilities":[{"cve":{"id":"CVE-2025-5496","sourceIdentifier":"0fc0942c-577d-436f-ae8e-945763c79b02","published":"2025-10-21T10:15:34.733","lastModified":"2025-10-28T15:36:52.253","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"ZohoCorp ManageEngine Endpoint Central versions earlier than 11.4.2508.14, 11.4.2516.06, and 11.4.2518.01 are affected by an arbitrary file deletion vulnerability in the agent setup component."}],"metrics":{"cvssMetricV31":[{"source":"0fc0942c-577d-436f-ae8e-945763c79b02","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N","baseScore":3.3,"baseSeverity":"LOW","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":1.8,"impactScore":1.4}]},"weaknesses":[{"source":"0fc0942c-577d-436f-ae8e-945763c79b02","type":"Secondary","description":[{"lang":"en","value":"CWE-269"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:zohocorp:manageengine_endpoint_central:*:*:*:*:*:*:*:*","versionEndExcluding":"11.4.2508.14","matchCriteriaId":"C8499553-29FA-4A0F-B800-6A38AF3DB8F6"},{"vulnerable":true,"criteria":"cpe:2.3:a:zohocorp:manageengine_endpoint_central:*:*:*:*:*:*:*:*","versionStartIncluding":"11.4.2510.01","versionEndExcluding":"11.4.2516.06","matchCriteriaId":"D6166067-454E-47CD-9BF9-4ECFBAFF08D6"}]}]}],"references":[{"url":"https://www.manageengine.com/products/desktop-central/kb/arbitrary-file-deletion-allows-local-privilege-escalation.html","source":"0fc0942c-577d-436f-ae8e-945763c79b02","tags":["Vendor Advisory"]}]}}]}