CVE-2021-40539CISA KEV: Actively Exploited

Zoho ManageEngine ADSelfService Plus Authentication Bypass Vulnerability

Published Nov 3, 2021·Updated Nov 3, 2021

Description

Zoho ManageEngine ADSelfService Plus contains an authentication bypass vulnerability affecting the REST API URLs which allow for remote code execution.

Public Exploits & PoCs5 found

References

View on NVD Search GitHub Search Google

Get alerted for CVEs like this

Register your stack and get notified within minutes when a matching CVE drops.

Start monitoring free