Exposures › CVE-2021-37415
CVE-2021-37415
Severity
high · on CISA KEV actively exploited
Source
CISA-KEV · kev
Published
2021-12-01
Reference
⌖ exploited in the wild
shame 50/100
exploited-in-wild
Zoho ManageEngine ServiceDesk Plus before 11302 is vulnerable to authentication bypass that allows a few REST-API URLs without authentication
Players implicated
Description
Zoho ManageEngine ServiceDesk Plus before 11302 is vulnerable to authentication bypass that allows a few REST-API URLs without authentication
Affected FedRAMP products 0 in the catalog
No correlated FedRAMP products.