Vulnerability Details CVE-2021-44757
Zoho ManageEngine Desktop Central before 10.1.2137.9 and Desktop Central MSP before 10.1.2137.9 allow attackers to bypass authentication, and read sensitive information or upload an arbitrary ZIP archive to the server.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.386
EPSS Ranking 97.0%
CVSS Severity
CVSS v3 Score 9.1
CVSS v2 Score 6.4
References
- https://pitstop.manageengine.com/portal/en/community/topic/a-critical-security-patch-released-in-desktop-central-and-desktop-central-msp-for-cve-2021-44757-17-1-2022
- https://pitstop.manageengine.com/portal/en/community/topic/a-critical-security-patch-released-in-desktop-central-and-desktop-central-msp-for-cve-2021-44757-17-1-2022
Products affected by CVE-2021-44757
-
cpe:2.3:a:zohocorp:manageengine_desktop_central:-
-
cpe:2.3:a:zohocorp:manageengine_desktop_central:10
-
cpe:2.3:a:zohocorp:manageengine_desktop_central:10.0
-
cpe:2.3:a:zohocorp:manageengine_desktop_central:10.0.0
-
cpe:2.3:a:zohocorp:manageengine_desktop_central:10.0.124
-
cpe:2.3:a:zohocorp:manageengine_desktop_central:10.0.137
-
cpe:2.3:a:zohocorp:manageengine_desktop_central:10.0.184
-
cpe:2.3:a:zohocorp:manageengine_desktop_central:10.0.255
-
cpe:2.3:a:zohocorp:manageengine_desktop_central:10.0.271
-
cpe:2.3:a:zohocorp:manageengine_desktop_central:10.0.289
-
cpe:2.3:a:zohocorp:manageengine_desktop_central:10.0.290
-
cpe:2.3:a:zohocorp:manageengine_desktop_central:10.0.380
-
cpe:2.3:a:zohocorp:manageengine_desktop_central:10.0.430
-
cpe:2.3:a:zohocorp:manageengine_desktop_central:10.0.479
-
cpe:2.3:a:zohocorp:manageengine_desktop_central:10.0.483
-
cpe:2.3:a:zohocorp:manageengine_desktop_central:10.0.484
-
cpe:2.3:a:zohocorp:manageengine_desktop_central:10.0.486
-
cpe:2.3:a:zohocorp:manageengine_desktop_central:10.0.533
-
cpe:2.3:a:zohocorp:manageengine_desktop_central:10.0.552.w
-
cpe:2.3:a:zohocorp:manageengine_desktop_central:10.0.561
-
cpe:2.3:a:zohocorp:manageengine_desktop_central:10.0.647
-
cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2119.7
-
cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2127.17
-
cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2127.18
-
cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2128.0
-
cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2137.2
-
cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2137.3
-
cpe:2.3:a:zohocorp:manageengine_desktop_central:10.1.2137.8
-
cpe:2.3:a:zohocorp:manageengine_desktop_central:7.0
-
cpe:2.3:a:zohocorp:manageengine_desktop_central:7.0.0
-
cpe:2.3:a:zohocorp:manageengine_desktop_central:7.0.1
-
cpe:2.3:a:zohocorp:manageengine_desktop_central:8.0.0
-
cpe:2.3:a:zohocorp:manageengine_desktop_central:9.0
-
cpe:2.3:a:zohocorp:manageengine_desktop_central:9.1.0
-
cpe:2.3:a:zohocorp:manageengine_desktop_central_managed_service_providers:-
-
cpe:2.3:a:zohocorp:manageengine_desktop_central_managed_service_providers:7.0
-
cpe:2.3:a:zohocorp:manageengine_desktop_central_managed_service_providers:9.0