Zoho ManageEngine ServiceDesk Plus before 11306, ServiceDesk Plus MSP before 10530, and SupportCenter Plus before 11014 are vulnerable to unauthenticated remote code execution. This is related to /RestAPI URLs in a servlet, and ImportTechnicians in the Struts configuration.
Metrics
Affected Vendors & Products
References
History
Tue, 04 Feb 2025 20:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
kev
|

Status: PUBLISHED
Assigner: mitre
Published:
Updated: 2025-02-04T19:30:56.317Z
Reserved: 2021-11-20T00:00:00.000Z
Link: CVE-2021-44077

Updated: 2024-08-04T04:10:17.351Z

Status : Analyzed
Published: 2021-11-29T04:15:06.737
Modified: 2025-03-14T16:48:14.437
Link: CVE-2021-44077

No data.