Blog | G5 Cyber Security

Zoho patches actively exploited critical ADSelfService Plus bug

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) is warning that hackers are exploiting a critical vulnerability in Zohos ManageEngine ADSelfService Plus password management solution. The security issue is identified as CVE-2021-40539. It is considered critical as it can allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Zoho has published a security advisory to announce that an update that patches the bug is currently available.”]

Source: https://www.bleepingcomputer.com/news/security/zoho-patches-actively-exploited-critical-adselfservice-plus-bug/

Exit mobile version