All intelligence
// vulnerability record
cached · NVD via COSMOS syncCVE-2021-37415
NONEKEVpublish date unavailable
CVSS / 10
// description
Zoho ManageEngine ServiceDesk Plus before 11302 is vulnerable to authentication bypass that allows a few REST-API URLs without authentication
// required action (CISA KEV)
Apply updates per vendor instructions.
added 2021-12-01 00:00 UTC