logo
DATABASE RESOURCES PRICING ABOUT US

CVE-2021-44077

Description

Zoho ManageEngine ServiceDesk Plus before 11306, ServiceDesk Plus MSP before 10530, and SupportCenter Plus before 11014 are vulnerable to unauthenticated remote code execution. This is related to /RestAPI URLs in a servlet, and ImportTechnicians in the Struts configuration. **Recent assessments:** **wvu-r7** at December 08, 2021 7:41pm UTC reported: Please see the [Rapid7 analysis](<https://attackerkb.com/topics/qv2aD8YfMN/cve-2021-44077/rapid7-analysis>). Assessed Attacker Value: 5 Assessed Attacker Value: 5Assessed Attacker Value: 5


Related