Vendor Advisory
AttackerKB
IVM Content
Patching Urgency
Last Update
CVE-2021-44077
Zoho's Advisory
In Progress
Under Evaluation
Immediately
December 7, 2021 5:00pm ET
Summary
Zoho customers have had a huge incentive lately to keep their software up to date, as recent Zoho critical vulnerabilities have been weaponized shortly after release by advanced attackers. (Rapid7 blogged as recently as November 9, 2021, about the Exploitation of Zoho ManageEngine). This trend continues with CVE-2021-44077, an unauthenticated remote code execution vulnerability affecting several of their products. To assist their customers, Zoho has since set up an online security response plan that includes an exploit detection tool to see if an organization’s installation is compromised.
Affected versions:
ManageEngine ServiceDesk Plus, prior to version 11306
ServiceDesk Plus MSP, prior to version 10530
SupportCenter Plus, prior to version 11014
Details
On September 16, 2021, Zoho released a Security Advisory urging customers to upgrade their software in order to resolve an authentication bypass vulnerability. 67 days later, on November 22, 2021, they released an additional advisory for the 44077 CVE indicating that the previously mentioned update also fixed a remote code execution (RCE) vulnerability that is being exploited in the wild.
Last week, CISA released an alert detailing attacker tactics, techniques, and procedures (TTPs) and in ..
Support the originator by clicking the read the rest link below.
