CVE-2021-44077

Zoho ManageEngine ServiceDesk Plus before 11306, ServiceDesk Plus MSP before 10530, and SupportCenter Plus before 11014 are vulnerable to unauthenticated remote code execution. This is related to /RestAPI URLs in a servlet, and ImportTechnicians in the Struts configuration.

Attack Vector (AV)	Network	Adjacent	Local	Physical
Attack Complexity (AC)	LOW	High
Privileges Required (PR)	None	Low	High
User Interaction (UI)	None	Required
Scope (S)	Unchange	Change
Confidentiality (C)	None	Low	High
Integrity (I)	None	Low	High
Availability (A)	None	Low	High

Attack Vector (AV)	Network	Adjacent	Local
Access Complexity (AC)	Low	Medium	High
Authentication (Au)	None	Single	Multiple
Confidentiality (C)	None	Parical	Complete
Integrity (I)	None	Partial	Complete
Availability (A)	None	Partial	Complete

NVD References

Refer to Information on External Sites

CVE Infomation	Exploits or more Infomation
mitre	EXPLOIT DATABASE
NVD	0day.today
vulmon.com	github
CVE Details	Twitter
JVN ENG JPN
Reconshell

List of frequently cited URLs

URL	Num of Times Referred to
http://patrowl.io	205
https://www.lunasec.io/docs/blog/log4j-zero-day	176
https://cvetrends.com	55
https://lists.astaro.com/ASGV9-IPS-rules.html#0	19
https://ift.tt/3xQ0DBZ	11
https://us-cert.cisa.gov/ncas/alerts/aa21-336a	4
https://www.helpnetsecurity.com/2021/12/03/cve-2021-44077/?...	4
https://bit.ly/3qDCg7n	3
https://github.com/horizon3ai/CVE-2021-44077	3
http://go.usa.gov/xeVYA	3
https://twitter.com/CISAgov/status/1466542016033136647	3
https://xz.aliyun.com/	3
https://ipssignatures.appspot.com/?cve=CVE-2021-44077	3

Information from Twitter

User	URL	Info Source	Date
jc_vazquez	https://bit.ly/3x9pD79	Source jc_vazquez 1533628820208508928	2022/06/06
jc_vazquez	https://twitter.com/jc_vazquez/status/1533628820208508928/p...	Source jc_vazquez 1533628820208508928	2022/06/06
NeobeePaul	https://us-cert.cisa.gov/ncas/alerts/aa21-336a	Source NeobeePaul 1533762302863757312	2022/06/06
TheDFIRReport	https://thedfirreport.com/2022/06/06/will-the-real-msiexec-...	Source TheDFIRReport 1533771110336036865	2022/06/06
CVEtrends	https://cvetrends.com	Source CVEtrends 1533795856155131905	2022/06/06
tribal_sec	https://thedfirreport.com/2022/06/06/will-the-real-msiexec-...	Source tribal_sec 1534553502856388608	2022/06/09
tribal_sec	https://twitter.com/tribal_sec/status/1534553502856388608/p...	Source tribal_sec 1534553502856388608	2022/06/09
Cyber_Cave_sa	https://twitter.com/Cyber_Cave_sa/status/153734686836312064...	Source Cyber_Cave_sa 1537346868363120641	2022/06/16
Cyber_Cave_sa	https://twitter.com/Cyber_Cave_sa/status/153734864957067264...	Source Cyber_Cave_sa 1537348649570672641	2022/06/16
a3sec	https://hubs.ly/Q01g3hGf0	Source a3sec 1542946137488883712	2022/07/02

URL	Num of Times Referred to
patrowl.io	205
www.lunasec.io	176
cvetrends.com	55
lists.astaro.com	19
ift.tt	11
us-cert.cisa.gov	4
www.helpnetsecurity.com	4
bit.ly	3
github.com	3
go.usa.gov	3
twitter.com	3
xz.aliyun.com	3
ipssignatures.appspot.com	3

User	URL	Info Source
jc_vazquez	bit.ly	Show Tweet
jc_vazquez	twitter.com	Show Tweet
NeobeePaul	us-cert.cisa.gov	Show Tweet
TheDFIRReport	thedfirreport.com	Show Tweet
CVEtrends	cvetrends.com	Show Tweet
tribal_sec	thedfirreport.com	Show Tweet
tribal_sec	twitter.com	Show Tweet
Cyber_Cave_sa	twitter.com	Show Tweet
Cyber_Cave_sa	twitter.com	Show Tweet
a3sec	hubs.ly	Show Tweet

Name	URL
No Data

Name	URL
No Data

2022/07/02 Score : 1
Added Har-sia Database : 2021/11/29
Last Modified : 2022/07/02
Highest Scored Date : 2021/12/03
Highest Score : 103

CVE-2021-44077

Description from NVD

▼ CVSS3 Vec CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

▼ CVSS2 Vec AV:N/AC:L/Au:N/C:P/I:P/A:P

NVD References

Refer to Information on External Sites

Information from Twitter

Information from Twitter