ManageEngine (ServiceDesk Plus MSP, SupportCenter Plus) Family May 2025 Security Update Advisory

May 26 2025

Overview

Zoho(https://www.zohocorp.com/) has released a security update that addresses a vulnerability in its ManageEngine suite of products. Users of affected products are advised to update to the latest version.

Affected Products

ServiceDesk Plus MSP version 14910

SupportCenter Plus version 14910

Resolved Vulnerabilities

Certified LFI Vulnerability (CVE-2025-3444) with a High Impact Rating in ServiceDesk Plus MSP, SupportCenter Plus [1]

Vulnerability Patches

Please follow the security advisory published on May 22, 2015 to update to the applicable version and the latest version.

ServiceDesk Plus MSP version 14920

SupportCenter Plus 14920 version

Referenced Sites

[1] CVE-2025-3444 – Authenticated LFI Vulnerability

https://www.manageengine.com/products/service-desk-msp/cve-2025-3444.html

ManageEngine (ServiceDesk Plus MSP, SupportCenter Plus) Family May 2025 Security Update Advisory

Overview

Affected Products

Resolved Vulnerabilities

Vulnerability Patches

Referenced Sites

Broadcom Product Security Update Advisory

SonicWall Product Update Advisory (CVE-2025-40595)

Overview

Affected Products

Resolved Vulnerabilities

Vulnerability Patches

Referenced Sites

Tags:

Broadcom Product Security Update Advisory

SonicWall Product Update Advisory (CVE-2025-40595)