Volerion logoVolerion
Volerion logoVolerion

ManageEngine ADSelfService Plus, DataSecurity Plus, and RecoveryManager Plus Authenticated Remote Code Execution Vulnerability

Vulnerability

A vulnerability allowing authenticated remote code execution on agent machines has been identified in ManageEngine ADSelfService Plus (versions prior to 6525), DataSecurity Plus (versions prior to 6264), and RecoveryManager Plus (versions prior to 6313). This vulnerability arises from improper access controls in a third-party dependency, which could be exploited by authenticated domain users to execute arbitrary commands on client machines where the respective products' agents are installed.

Impact

Exploitation of this vulnerability could allow authenticated users to execute arbitrary commands on client machines via the service communication channel between the server and client.

Remediation

Users can download and apply the latest upgrade pack for ADSelfService Plus, RecoveryManager Plus, and DataSecurity Plus from the ManageEngine website. Instructions for updating each product are available on their respective service pack pages.

Added: May 21, 2026, 2:49 PM
Updated: May 22, 2026, 9:43 AM

Vulnerability Rating

Custom Algorithm
spread
3.1
impact
10.0
exploitability
3.5
remediation
7.7
relevance
8.5
threat
0.0
urgency
2.9
incentive
0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.