Zoho Releases Patch for Critical Flaw Affecting ManageEngine Desktop Central


Zoho released updates for a major security vulnerability in Desktop Central and Desktop Central MSP that could be exploited by a remote adversary to undertake unauthorised actions on affected servers.

The flaw, identified as CVE202144757, is a case of authentication bypass that “may allow an attacker to read unauthorised data or write an arbitrary zip file on the server,” according to the business.

Read More…