Vulnerability DatabaseCVE-2025-36527

CVE-2025-36527:
Zoho ManageEngine ADAudit Plus vulnerability analysis and mitigation

Overview

A high-severity SQL injection vulnerability was identified in Zohocorp ManageEngine ADAudit Plus affecting all versions below build 8511. The vulnerability (CVE-2025-36527) was discovered by security researcher minhgalaxy and was fixed on May 09, 2025. The vulnerability affects an API responsible for exporting ADAudit Plus reports (Wiz, ManageEngine).

Technical details

The vulnerability is classified as CWE-89 (Improper Neutralization of Special Elements used in an SQL Command) and has received a HIGH severity rating with a CVSS v3.1 base score of 8.3. The CVSS vector string is CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L, indicating network accessibility, low attack complexity, and required low privileges for exploitation (NVD, Wiz).

Impact

This vulnerability could allow an authenticated adversary to execute custom queries and access the database table entries using the vulnerable request. The potential impact includes unauthorized access to sensitive database information and possible manipulation of data (ManageEngine).

Mitigation and workarounds

Users are advised to update their ADAudit Plus instance to build 8511 using the service pack, which contains the fix for the SQL injection vulnerability. This is the primary and recommended mitigation strategy (ManageEngine).

Community reactions

The vulnerability was part of a larger security update from ManageEngine in May 2025, which addressed multiple SQL injection vulnerabilities across their product suite (Wiz).

Additional resources

Source: This report was generated using AI

Related Zoho ManageEngine ADAudit Plus vulnerabilities:

CVE ID	Severity	Score	Technologies	Component name	CISA KEV exploit	Has fix	Published date
CVE-2025-41444	HIGH	8.3	Zoho ManageEngine ADAudit Plus	cpe:2.3:a:zohocorp:manageengine_adaudit_plus	No	Yes	Jun 09, 2025
CVE-2025-36528	HIGH	8.3	Zoho ManageEngine ADAudit Plus	cpe:2.3:a:zohocorp:manageengine_adaudit_plus	No	Yes	Jun 09, 2025
CVE-2025-27709	HIGH	8.3	Zoho ManageEngine ADAudit Plus	cpe:2.3:a:zohocorp:manageengine_adaudit_plus	No	Yes	Jun 09, 2025
CVE-2025-41407	HIGH	8.3	Zoho ManageEngine ADAudit Plus	cpe:2.3:a:zohocorp:manageengine_adaudit_plus	No	Yes	May 23, 2025
CVE-2025-36527	HIGH	8.3	Zoho ManageEngine ADAudit Plus	cpe:2.3:a:zohocorp:manageengine_adaudit_plus	No	Yes	May 23, 2025

Free Vulnerability Assessment

Benchmark your Cloud Security Posture

Evaluate your cloud security practices across 9 security domains to benchmark your risk level and identify gaps in your defenses.

Request assessment

Additional Wiz resources

Cloud Vulnerability DB

A community-led vulnerabilities database

Cloud Threat Landscape

A threat intelligence database

PEACH

A tenant isolation framework

Get a personalized demo

Ready to see Wiz in action?

"Best User Experience I have ever seen, provides full visibility to cloud workloads."

David EstlickCISO

"Wiz provides a single pane of glass to see what is going on in our cloud environments."

Adam FletcherChief Security Officer

"We know that if Wiz identifies something as critical, it actually is."

Greg PoniatowskiHead of Threat and Vulnerability Management

Get a demo

CVE-2025-36527: Zoho ManageEngine ADAudit Plus vulnerability analysis and mitigation