CVE-2025-9223

Command blacklist bypass in Execute Program action enabling execution of unauthorized commands.

Vulnerability Details
Severity	High
CVE ID	CVE-2025-9223
Affected software versions	Version 178100 and below
Fixed Version	Version 178200 and above Version 178001 to 178009
Fixed On	22 October 2025

Details

When creating / updating the execute program action, The command blacklist validation was bypassed when attacker specified absolute paths for blacklisted commands, effectively bypassing security controls designed to prevent dangerous operations.

Impact

Authenticated users could execute blacklisted sensitive commands with administrative privileges on Applications Manager servers, potentially compromising system security and integrity.

Fix

Applications Manager version 178200 (refer above for other fixed versions) and above requires super admin approval for creating/updating execute program actions. New actions remain disabled pending approval, preventing unauthorized command execution.

Steps to update

Update your Applications Manager instance to the latest build using the service pack.

Source and Acknowledgements

Find out more about CVE-2025-9223 from the CVE Directory and NIST NVD.

Reported by:

Johan

Need Help?

For clarification or corrections please contact our support team or email us at appmanager-support@manageengine.com

Loved by customers all over the world

"Standout Tool With Extensive Monitoring Capabilities"

★★★★★

It allows us to track crucial metrics such as response times, resource utilization, error rates, and transaction performance. The real-time monitoring alerts promptly notify us of any issues or anomalies, enabling us to take immediate action.

Reviewer Role: Research and Development

"I like Applications Manager because it helps us to detect issues present in our servers and SQL databases."

Carlos Rivero

Tech Support Manager, Lexmark