CVE-2021-31531

Published: Jun 29, 2021Modified: May 30, 2025

9.8

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Exploitability: 3.9 / Impact: 5.9

Source: NVD

Description

Zoho ManageEngine ServiceDesk Plus MSP before 10521 is vulnerable to Server-Side Request Forgery (SSRF).

Products: Zohocorp: Manageengine Servicedesk Plus Msp

1 product

Configuration A

23 vulnerable

Vulnerable Software	Affected Versions
Zohocorp Manageengine Servicedesk Plus Msp	Before 10.5
Zohocorp Manageengine Servicedesk Plus Msp	Version 10.5
Zohocorp Manageengine Servicedesk Plus Msp	Version 10.5 10500
Zohocorp Manageengine Servicedesk Plus Msp	Version 10.5 10501
Zohocorp Manageengine Servicedesk Plus Msp	Version 10.5 10502
Zohocorp Manageengine Servicedesk Plus Msp	Version 10.5 10503
Zohocorp Manageengine Servicedesk Plus Msp	Version 10.5 10504
Zohocorp Manageengine Servicedesk Plus Msp	Version 10.5 10505
Zohocorp Manageengine Servicedesk Plus Msp	Version 10.5 10506
Zohocorp Manageengine Servicedesk Plus Msp	Version 10.5 10507
Zohocorp Manageengine Servicedesk Plus Msp	Version 10.5 10508
Zohocorp Manageengine Servicedesk Plus Msp	Version 10.5 10509
Zohocorp Manageengine Servicedesk Plus Msp	Version 10.5 10510
Zohocorp Manageengine Servicedesk Plus Msp	Version 10.5 10511
Zohocorp Manageengine Servicedesk Plus Msp	Version 10.5 10512
Zohocorp Manageengine Servicedesk Plus Msp	Version 10.5 10513
Zohocorp Manageengine Servicedesk Plus Msp	Version 10.5 10514
Zohocorp Manageengine Servicedesk Plus Msp	Version 10.5 10515
Zohocorp Manageengine Servicedesk Plus Msp	Version 10.5 10516
Zohocorp Manageengine Servicedesk Plus Msp	Version 10.5 10517
Zohocorp Manageengine Servicedesk Plus Msp	Version 10.5 10518
Zohocorp Manageengine Servicedesk Plus Msp	Version 10.5 10519
Zohocorp Manageengine Servicedesk Plus Msp	Version 10.5 10520