Zoho Corp ManageEngine ServiceDesk Plus MSP 10.5 10507
Approved changes feed: RSS · Atom
cpe:2.3:a:zohocorp:manageengine_servicedesk_plus_msp:10.5:10507:*:*:*:*:*:*
part: a version: 10.5 update: 10507
| Vendor | Zohocorp (4f1ab088-ab0e-54ac-b0dc-2304879a7502) |
|---|---|
| Product | Manageengine Servicedesk Plus Msp (e2c7e134-94e2-52f3-b9ab-d3a2225cb0a0) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2021-44675 |
vulnerable | 2026-06-03 14:45:36.709972 |
Details available
Zoho ManageEngine ServiceDesk Plus MSP before 10.5 Build 10534 is vulnerable to unauthenticated remote code execution due to a filter bypass in which authentication is not required.
Published: 2021-12-20T14:57:06.000Z
Updated: 2024-08-04T04:25:16.914Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2021-44077 |
vulnerable | 2026-06-03 14:45:35.451316 |
Details available
Zoho ManageEngine ServiceDesk Plus before 11306, ServiceDesk Plus MSP before 10530, and SupportCenter Plus before 11014 are vulnerable to unauthenticated remote code execution. This is related to /RestAPI URLs in a servlet, and ImportTechnicians in the Struts configuration.
Published: 2021-11-29T03:17:45.000Z
Updated: 2025-10-21T23:25:24.156Z Reference links
|
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2021-31531 |
vulnerable | 2026-06-03 14:44:33.227537 |
Details available
Zoho ManageEngine ServiceDesk Plus MSP before 10521 is vulnerable to Server-Side Request Forgery (SSRF).
Published: 2021-06-29T13:13:12.000Z
Updated: 2025-05-30T16:01:36.379Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2021-31530 |
vulnerable | 2026-06-03 14:44:33.223951 |
Details available
Zoho ManageEngine ServiceDesk Plus MSP before 10522 is vulnerable to Information Disclosure.
Published: 2021-06-29T13:11:56.000Z
Updated: 2025-05-30T16:01:46.320Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2021-31160 |
vulnerable | 2026-06-03 14:44:31.792323 |
Details available
Zoho ManageEngine ServiceDesk Plus MSP before 10521 allows an attacker to access internal data.
Published: 2021-06-29T13:10:16.000Z
Updated: 2025-05-30T16:01:44.120Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2021-31159 |
vulnerable | 2026-06-03 14:44:31.737921 |
Details available
Zoho ManageEngine ServiceDesk Plus MSP before 10519 is vulnerable to a User Enumeration bug due to improper error-message generation in the Forgot Password functionality, aka SDPMSP-15732.
Published: 2021-06-16T12:51:13.000Z
Updated: 2024-08-03T22:48:14.309Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.