CISA Known Exploited Vulnerability

CVE-2021-40539 Ransomware

Zoho · ManageEngine

Zoho ManageEngine ADSelfService Plus Authentication Bypass Vulnerability

Date added 2021-11-03

BOD 22-01 due date 2021-11-17

CWE CWE-55

Ransomware Known

CISA description

Zoho ManageEngine ADSelfService Plus contains an authentication bypass vulnerability affecting the REST API URLs which allow for remote code execution.

Required action

Apply updates per vendor instructions.

Notes & references

https://nvd.nist.gov/vuln/detail/CVE-2021-40539

Where this lands in 800-53

Vulnerability data triggers these controls during assessment and continuous monitoring.

RA-5 · Vulnerability Monitoring and Scanning
SI-2 · Flaw Remediation
CM-6 · Configuration Settings
SI-7 · Software, Firmware, and Information Integrity
CM-8 · System Component Inventory

External lookups

NVD · CVE-2021-40539
CVE.org · CVE-2021-40539
CISA KEV catalog (canonical)