Zoho ManageEngine Desktop Central before 10.1.2137.9 and Desktop Central MSP before 10.1.2137.9 allow attackers to bypass authentication, and read sensitive information or upload an arbitrary ZIP archive to the server.
References
Configurations
Configuration 1 (hide)
|
History
21 Nov 2024, 06:31
Type | Values Removed | Values Added |
---|---|---|
References | () https://pitstop.manageengine.com/portal/en/community/topic/a-critical-security-patch-released-in-desktop-central-and-desktop-central-msp-for-cve-2021-44757-17-1-2022 - Vendor Advisory |
Information
Published : 2022-01-18 10:15
Updated : 2024-11-21 06:31
NVD link : CVE-2021-44757
Mitre link : CVE-2021-44757
CVE.ORG link : CVE-2021-44757
JSON object : View
Products Affected
zohocorp
- manageengine_desktop_central
- manageengine_desktop_central_managed_service_providers
CWE