Strix
26.1K

CVE-2021-44077

CRITICALCVSS 9.8/10Actively ExploitedEPSS 93.51%

Last modified

CVE-2021-44077 is a critical-severity vulnerability rated 9.8/10 on the CVSS scale. Zoho ManageEngine ServiceDesk Plus before 11306, ServiceDesk Plus MSP before 10530, and SupportCenter Plus before 11014 are vulnerable to unauthenticated remote code execution. This is related to /RestAPI URLs in a servlet, and ImportTechnicians in the Struts configuration.. CISA has confirmed active exploitation in the wild. EPSS estimates a 93.51% chance of exploitation in the next 30 days.

Description

Zoho ManageEngine ServiceDesk Plus before 11306, ServiceDesk Plus MSP before 10530, and SupportCenter Plus before 11014 are vulnerable to unauthenticated remote code execution. This is related to /RestAPI URLs in a servlet, and ImportTechnicians in the Struts configuration.

Metrics

CVSS 3.1
9.8/10

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS Probability
93.51%

99.8th percentile

Probability of exploitation in the next 30 days. Learn more

Exploitation Status

This vulnerability is listed in CISA’s Known Exploited Vulnerabilities catalog, confirming active exploitation in the wild. Federal agencies must remediate by .

Weakness Enumeration

Affected Software

VendorProductVersionsUpdate
ZohocorpManageengine Servicedesk Plus< 11.1
ZohocorpManageengine Servicedesk Plus11.111138
ZohocorpManageengine Servicedesk Plus11.211200
ZohocorpManageengine Servicedesk Plus11.311300
ZohocorpManageengine Servicedesk Plus Msp< 10.5
ZohocorpManageengine Servicedesk Plus Msp10.510500
ZohocorpManageengine Supportcenter Plus< 11.0
ZohocorpManageengine Supportcenter Plus11.011000

References

Timeline

Published
Last Modified
Status
Analyzed

Frequently Asked Questions

What is CVE-2021-44077?
Zoho ManageEngine ServiceDesk Plus before 11306, ServiceDesk Plus MSP before 10530, and SupportCenter Plus before 11014 are vulnerable to unauthenticated remote code execution. This is related to /RestAPI URLs in a servlet, and ImportTechnicians in the Struts configuration.
How severe is CVE-2021-44077?
CVE-2021-44077 has a CVSS score of 9.8/10 (CRITICAL severity). The EPSS model estimates a 93.51% probability of exploitation in the next 30 days. This vulnerability is listed in CISA's Known Exploited Vulnerabilities catalog.
How do I fix CVE-2021-44077?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2021-44077?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST