Zoho discovers another critical vulnerability in Desktop Central
By MYBRANDBOOK
Zoho has addressed a new critical severity vulnerability that affects the company's Desktop Central and Desktop Central MSP unified endpoint management solutions. Desktop Central instances, in particular, have been hacked before and access to compromised networks sold on hacking forums since at least July 2020.
Zoho has fixed the security flaw tracked as CVE-2021-44757 and is now providing alleviation with the latest released Desktop Central and Desktop Central MSP versions. ManageEngine Desktop Central is an endpoint management platform that allows admins to deploy patches and software over the network and troubleshoot them remotely.
Last month, Zoho patched another critical vulnerability CVE-2021-44515 that could allow threat actors to bypass authentication and execute arbitrary code on unpatched ManageEngine Desktop Central servers. It also warned at the time that it found evidence in the wild exploitation and urged customers to update as soon as possible to block incoming attacks.
Zoho's ManageEngine Team explained, “An authentication bypass vulnerability that can allow a remote user to perform unauthorized actions on the server. If exploited, this vulnerability may allow an attacker to read unauthorized data or write an arbitrary zip file on the server.”
The company also advised customers to follow its security hardening guidelines for Desktop Central and Desktop Central MSP.
The government of India intends to construct a single portal f
A single portal will be launched by the Indian government to list all of it...
OpenAI offers GPT-4o, a faster model available to all users at
GPT-4o, a faster and more sophisticated AI model, is made available to all...
Paytm brings UPI Lite Wallet for low-value transactions
Paytm’s parent company One97 Communications (OCL) is emphasizing upon UP...
BHIM to join e-commerce, competing with PhonePe and Google Pay
The government-supported payment software BHIM is getting ready to join t...
MICROMAX INFORMATICS LTD.
AMARA RAJA POWER SYSTEMS LTD.
TP-LINK INDIA PVT LTD.
RAMCO SYSTEMS Ltd.
Technology Icons Of India 2023: Sridhar Vembu
Sridhar Vembu is an Indian billionaire business magnate and the Founde...
Technology Icons Of India 2023: Gautam Adani
Gautam Adani is the Founder and the Chairman of the Adani Group, an In...
Technology Icons Of India 2023: Kulmeet Bawa
Kulmeet Bawa resides as President & Managing Director, SAP Indian subc...
CERT-IN protecting the cyber security space of India
CERT-In serves in the area of cyber security threats like hacking and ...
C-DOT enabling India in indigenous design, development and production of telecom technologies
An autonomous telecom R&D centre of Government of India, Center of Dev...
NIC bridging the digital divide and supporting government in eGovernance
The National Informatics Centre (NIC) is an Indian government departme...
SUPERTRON ELECTRONICS PVT. LTD.
Supertron deals in servers, laptops, components, accessories and is a...
SAVEX TECHNOLOGIES PVT. LTD.
Savex Technologies is the 3rd largest Information & Communication Tec...
TECHNOBIND SOLUTIONS PVT. LTD.
TechnoBind’s business model is focused on identifying and partnering...