ZoHo Patches Authentication Bypass in ManageEngine Desktop...

ZoHo Patches Authentication Bypass in ManageEngine Desktop Central (CVE-2021-44757)

On January 17, ZoHo issued an advisory for CVE-2021-44757, a critical authentication bypass it has patched in its ManageEngine Desktop Central and ManageEngine Desktop Central MSP products. At this time, there is no information stating that CVE-2021-44757 has been exploited in the wild, but given the history of exploitation against ZoHo ManageEngine Desktop Central servers, attackers are likely to adopt this vulnerability in attack chains.

For more information, please visit our blog.

Vulnerability Watch

Forum Discussion

ZoHo Patches Authentication Bypass in ManageEngine Desktop...

Recent Discussions

Frequently Asked Questions About Notepad++ Supply Chain Compromise

Ivanti Endpoint Manager Mobile Zero-Days Exploited (CVE-2026-1281, CVE-2026-1340)

Oracle January 2026 Critical Patch Update Addresses 158 CVEs

CVE-2025-64155: Exploit Code Released for Critical Fortinet FortiSIEM Vulnerability

Microsoft’s January 2026 Patch Tuesday Addresses 113 CVEs (CVE-2026-20805)

Americas

Europe

Asia / Australia