Lucene search
K

25 matches found

Nuclei
Nuclei
added 2026/06/26 6:13 p.m.79 views

Zoho ManageEngine ADSelfService Plus v6113 - Unauthenticated Remote Command Execution

Zoho ManageEngine ADSelfService Plus version 6113 and prior are vulnerable to a REST API authentication bypass vulnerability that can lead to remote code execution. id: CVE-2021-40539 info: name: Zoho ManageEngine ADSelfService Plus v6113 - Unauthenticated Remote Command Execution author:...

9.8CVSS7.9AI score0.9896EPSS
Exploits8References5
GithubExploit
GithubExploit
added 2024/10/12 9:9 a.m.414 views

Exploit for Use of Incorrectly-Resolved Name or Reference in Zohocorp Manageengine_Adselfservice_Plus

CVE-2021-40539 CVE-2021-40539: ADSelfService Plus RCE Vuln...

9.8CVSS7.4AI score0.9896EPSS
Exploits8
GithubExploit
GithubExploit
added 2024/10/12 9:1 a.m.385 views

Exploit for Use of Incorrectly-Resolved Name or Reference in Zohocorp Manageengine_Adselfservice_Plus

CVE-2021-40539 CVE-2021-40539: ADSelfService Plus RCE Vulner...

9.8CVSS7.4AI score0.9896EPSS
Exploits8
The Hacker News
The Hacker News
added 2023/06/26 5:51 a.m.178 views

Chinese Hackers Using Never-Before-Seen Tactics for Critical Infrastructure Attacks

The newly discovered Chinese nation-state actor known as Volt Typhoon has been observed to be active in the wild since at least mid-2020, with the hacking crew linked to never-before-seen tradecraft to retain remote access to targets of interest. The findings come from CrowdStrike, which is...

9.8CVSS8.4AI score0.9896EPSS
Exploits8
Information Security Automation
Information Security Automation
added 2022/10/21 8:10 p.m.160 views

Joint Advisory AA22-279A and Vulristics

Hello everyone! This episode will be about the new hot twenty vulnerabilities from CISA, NSA and FBI, Joint cybersecurity advisory CSA AA22-279A, and how I analyzed these vulnerabilities using my open source project Vulristics. Alternative video link for Russia: Americans cant just release a list...

10CVSS1.1AI score0.99999EPSS
Exploits966
Malwarebytes
Malwarebytes
added 2022/04/29 4:28 p.m.1028 views

The top 5 most routinely exploited vulnerabilities of 2021

A joint Cybersecurity Advisory, coauthored by cybersecurity authorities of the United States CISA, NSA, and FBI, Australia ACSC, Canada CCCS, New Zealand NZ NCSC, and the United Kingdom NCSC-UK has detailed the top 15 Common Vulnerabilities and Exposures CVEs routinely exploited by malicious cybe...

10CVSS10AI score0.99999EPSS
Exploits484
The Hacker News
The Hacker News
added 2022/01/18 5:13 a.m.140 views

Zoho Releases Patch for Critical Flaw Affecting ManageEngine Desktop Central

Enterprise software maker Zoho on Monday issued patches for a critical security vulnerability in Desktop Central and Desktop Central MSP that a remote adversary could exploit to perform unauthorized actions in affected servers. Tracked as CVE-2021-44757, the shortcoming concerns an instance of...

10CVSS2.2AI score0.99867EPSS
Exploits16
The Hacker News
The Hacker News
added 2021/12/04 5:7 a.m.133 views

Warning: Yet Another Zoho ManageEngine Product Found Under Active Attacks

Enterprise software provider Zoho on Friday warned that a newly patched critical flaw in its Desktop Central and Desktop Central MSP is being actively exploited by malicious actors, marking the third security vulnerability in its products to be abused in the wild in a span of four months. The...

10CVSS1.6AI score0.99867EPSS
Exploits16
Packet Storm
Packet Storm
added 2021/11/27 12:0 a.m.813 views

ManageEngine ADSelfService Plus Authentication Bypass / Code Execution

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'ManageEngine ADSelfService Plus CVE-2021-40539', 'Description' = %q This module exploits CVE-2021-40539, a REST API authentication bypass...

9.8CVSS9.2AI score0.9896EPSS
Exploits8
Rapid7 Blog
Rapid7 Blog
added 2021/11/26 5:21 p.m.110 views

Metasploit Wrap-Up

Self-Service Remote Code Execution This week, our own @wvu-r7 added an exploit module that achieves unauthenticated remote code execution in ManageEngine ADSelfService Plus, a self-service password management and single sign-on solution for Active Directory. This new module leverages a REST API...

7.5CVSS10.7AI score0.9896EPSS
Exploits12
Metasploit
Metasploit
added 2021/11/25 5:42 p.m.202 views

ManageEngine ADSelfService Plus CVE-2021-40539

This module exploits CVE-2021-40539, a REST API authentication bypass vulnerability in ManageEngine ADSelfService Plus, to upload a JAR and execute it as the user running ADSelfService Plus - which is SYSTEM if started as a service. Module Options msf use...

9.8CVSS10AI score0.9896EPSS
Exploits8
ICS
ICS
added 2021/11/22 12:0 p.m.51 views

APT Actors Exploiting Newly Identified Vulnerability in ManageEngine ADSelfService Plus

Summary This Joint Cybersecurity Advisory uses the MITRE Adversarial Tactics, Techniques, and Common Knowledge ATT &CK® framework, Version 8. See the ATT&CK for Enterprise for referenced threat actor tactics and for techniques. This joint advisory is the result of analytic efforts between the...

9.8CVSS9.8AI score0.9896EPSS
Exploits8References39
Check Point Advisories
Check Point Advisories
added 2021/11/14 12:0 a.m.11 views

Zoho ManageEngine ADSelfService Plus Authentication Bypass (CVE-2021-40539)

An authentication bypass vulnerability exists in Zoho ManageEngine ADSelfService Plus. Successful exploitation of this vulnerability would allow remote attackers to gain unauthorized access into the affected system...

7.5CVSS9.2AI score0.9896EPSS
Exploits8
Rapid7 Blog
Rapid7 Blog
added 2021/11/09 4:59 p.m.158 views

Opportunistic Exploitation of Zoho ManageEngine and Sitecore CVEs

Over the weekend of November 6, 2021, Rapid7’s Incident Response IR and Managed Detection and Response MDR teams began seeing opportunistic exploitation of two unrelated CVEs: CVE-2021-40539, a REST API authentication bypass in Zoho’s ManageEngine ADSelfService Plus product that Rapid7 has...

10CVSS9.8AI score0.99214EPSS
Exploits12
Microsoft Secure
Microsoft Secure
added 2021/11/09 12:24 a.m.253 views

Threat actor DEV-0322 exploiting ZOHO ManageEngine ADSelfService Plus

Microsoft has detected exploits being used to compromise systems running the ZOHO ManageEngine ADSelfService Plus software versions vulnerable to CVE-2021-40539 in a targeted campaign. Microsoft Threat Intelligence Center MSTIC attributes this campaign with high confidence to DEV-0322, a group...

7.5CVSS10AI score0.9896EPSS
Exploits8
Microsoft Malware Protection
Microsoft Malware Protection
added 2021/11/09 12:24 a.m.358 views

Threat actor DEV-0322 exploiting ZOHO ManageEngine ADSelfService Plus

Microsoft has detected exploits being used to compromise systems running the ZOHO ManageEngine ADSelfService Plus software versions vulnerable to CVE-2021-40539 in a targeted campaign. Microsoft Threat Intelligence Center MSTIC attributes this campaign with high confidence to DEV-0322, a group...

7.5CVSS10AI score0.9896EPSS
Exploits8
Tenable Nessus
Tenable Nessus
added 2021/11/08 12:0 a.m.152 views

ManageEngine ADSelfServicePlus Authentication Bypass (CVE-2021-40539)

Binary data manageengineadselfserviceplusCVE-2021-40539.nbin...

9.8CVSS9.8AI score0.9896EPSS
Exploits8References3
Tenable Nessus
Tenable Nessus
added 2021/09/24 12:0 a.m.264 views

ManageEngine Log360 < Build 5229 REST API Restriction Bypass RCE

Binary data manageenginelog360cve-2021-40539.nbin...

9.8CVSS9.8AI score0.9896EPSS
Exploits8References2
ThreatPost
ThreatPost
added 2021/09/09 12:58 p.m.341 views

Zoho ManageEngine Password Manager Zero-Day Gets Fix

A critical security vulnerability in the Zoho ManageEngine ADSelfService Plus platform could allow remote attackers to bypass authentication and have free rein across users’ Active Directory AD and cloud accounts. The issue CVE-2021-40539 has been actively exploited in the wild as a zero-day,...

10CVSS9.8AI score0.99999EPSS
Exploits59References11
The Hacker News
The Hacker News
added 2021/09/09 5:45 a.m.112 views

CISA Warns of Actively Exploited Zoho ManageEngine ADSelfService Vulnerability

The U.S. Cybersecurity and Infrastructure Security Agency CISA on Wednesday issued a bulletin warning of a zero-day flaw affecting Zoho ManageEngine ADSelfService Plus deployments that is currently being actively exploited in the wild. The flaw, tracked as CVE-2021-40539, concerns a REST API...

10CVSS0.9AI score0.99941EPSS
Exploits14
Rows per page
Query Builder