CVE-2021-44077 — Actively Exploited: ManageEngine ServiceDesk Plus (SDP) / SupportCenter Plus (Zoho)
Zoho ManageEngine ServiceDesk Plus before 11306, ServiceDesk Plus MSP before 10530, and SupportCenter Plus before 11014 are vulnerable to unauthenticated remote code execution
| CVE ID | CVE-2021-44077 |
|---|---|
| Vendor | Zoho |
| Product | ManageEngine ServiceDesk Plus (SDP) / SupportCenter Plus |
| Vulnerability name | Zoho ManageEngine ServiceDesk Plus Remote Code Execution Vulnerability |
| Date added | 2021-12-01 |
| Remediation due | 2021-12-15 |
| Known ransomware use | Unknown |
| Required action | Apply updates per vendor instructions. |
| Description | Zoho ManageEngine ServiceDesk Plus before 11306, ServiceDesk Plus MSP before 10530, and SupportCenter Plus before 11014 are vulnerable to unauthenticated remote code execution |
| Source | CISA Known Exploited Vulnerabilities |
🔍 Search all exploited vulnerabilities →
$1499/mo
Try ExploitWatch →