← ExploitWatch
HomeExploited Vulnerabilities

CVE-2021-44077 — Actively Exploited: ManageEngine ServiceDesk Plus (SDP) / SupportCenter Plus (Zoho)

Zoho ManageEngine ServiceDesk Plus before 11306, ServiceDesk Plus MSP before 10530, and SupportCenter Plus before 11014 are vulnerable to unauthenticated remote code execution

CVE IDCVE-2021-44077
VendorZoho
ProductManageEngine ServiceDesk Plus (SDP) / SupportCenter Plus
Vulnerability nameZoho ManageEngine ServiceDesk Plus Remote Code Execution Vulnerability
Date added2021-12-01
Remediation due2021-12-15
Known ransomware useUnknown
Required actionApply updates per vendor instructions.
DescriptionZoho ManageEngine ServiceDesk Plus before 11306, ServiceDesk Plus MSP before 10530, and SupportCenter Plus before 11014 are vulnerable to unauthenticated remote code execution
SourceCISA Known Exploited Vulnerabilities

🔍 Search all exploited vulnerabilities →