Unrated severityCISA KEVNVD Advisory· Published Sep 1, 2021· Updated Oct 21, 2025
CVE-2021-37415
CVE-2021-37415
Description
Zoho ManageEngine ServiceDesk Plus before 11302 is vulnerable to authentication bypass that allows a few REST-API URLs without authentication.
Affected products
1- Zoho/ManageEngine ServiceDesk Plusdescription
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
2- www.manageengine.commitrex_refsource_MISC
- www.manageengine.com/products/service-desk/on-premises/readme.htmlmitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.