virus logo Endpoint Vulnerability

ManageEngine ServiceDesk Plus CVE-2021-44077 Remote Code Execution Vulnerability

description-logoDescription

Unauthenticated remote code execution via /RestAPI URLs in a servlet and ImportTechnicians Struts configuration affects Zoho ManageEngine ServiceDesk Plus (<=11305), ServiceDesk Plus MSP (<=10529), and SupportCenter Plus (<=11013).

description-logoOutbreak Alert

APT Actors are actively exploiting Zoho ManageEngine ServiceDesk Plus which is an IT help desk software with asset management. The exploit is tracked via CVE-2021-44077 and rated critical due to its capability for unauthenticated remote code execution (RCE).

View the full Outbreak Alert Report

affected-products-logoAffected Applications

ManageEngine ServiceDesk Plus

Version Updates

Date Version Status Detail
2025-03-13 1.00827
Modified
 ManageEngine ServiceDesk Plus
2023-07-27 1.00509
New
 ManageEngine ServiceDesk Plus

References

https://www.manageengine.com/products/service-desk/security-advisory.html
ID 4965
Created Apr 28, 2023
Description
Updated		 Jan 16, 2026
CVE ID
Tags Zoho Exploit Threat Signal
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon
Coverage FortiClient
OS Windows
Vendor Zoho
Patch manual
Application ManageEngine ServiceDesk Plus