A new critical vulnerability has been fixed that was detected in Zoho’s Desktop Central and Desktop Central MSP; this security flaw allows an attacker to bypass the authentication and remotely perform malicious actions on the compromised server. The flaws have been tracked as “CVE-2021-44757,” an authentication bypass vulnerability, and have been fixed in the latest build (10.1.2137.9), which is released on January 17, 2022.
Read full article on GBHackers