CVE-2021-44077

Name of the Vulnerable Software and Affected Versions Zoho ManageEngine ServiceDesk Plus versions prior to 11306 Zoho ManageEngine ServiceDesk Plus MSP versions prior to 10530 Zoho ManageEngine SupportCenter Plus versions prior to 11014

Description The issue is related to unauthenticated remote code execution and is associated with the lack of an authentication procedure. This can allow a remote attacker to execute arbitrary code. The vulnerability is related to /RestAPI URLs in a servlet and ImportTechnicians in the Struts configuration. It has been observed that cybercriminals are using this vulnerability, and 5.7% of all vulnerable software versions are used in Russia.

Recommendations For Zoho ManageEngine ServiceDesk Plus versions prior to 11306, update to version 11306 or later. For Zoho ManageEngine ServiceDesk Plus MSP versions prior to 10530, update to version 10530 or later. For Zoho ManageEngine SupportCenter Plus versions prior to 11014, update to version 11014 or later. As a temporary workaround, consider restricting access to the /RestAPI URLs in the affected servlet and disabling the ImportTechnicians function in the Struts configuration until a patch is applied.