Primary

Context

ManageEngine Endpoint Central Arbitrary File Deletion Vulnerability Allowing Local Privilege Escalation

Vulnerability

An arbitrary file deletion vulnerability has been identified in ZohoCorp ManageEngine Endpoint Central, specifically in versions prior to 11.4.2508.14, 11.4.2516.06, and 11.4.2518.01. The vulnerability resides in the agent setup component, where privileged file deletion during policy refresh can be exploited to gain SYSTEM-level access.

Impact

Exploitation of this vulnerability allows for unauthorized deletion of files, which could be leveraged to escalate privileges to the SYSTEM level.

Remediation

Users can update to Endpoint Central versions 11.4.2518.01, 11.4.2508.14, or 11.4.2516.06 to address this vulnerability. After updating, it is recommended to verify the installation of the latest patch.

Added: Oct 21, 2025, 10:16 AM

Updated: Oct 21, 2025, 10:16 AM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

3.3

remediation

7.7

relevance

0.8

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

3.3

remediation

7.7

relevance

0.8

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

ManageEngine Endpoint Central Arbitrary File Deletion Vulnerability Allowing Local Privilege Escalation

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating