{"uuid": "6950f45e-ce47-4e7f-8126-85735486f3c5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-40539", "type": "exploited", "source": "https://t.me/information_security_channel/45181", "content": "Zoho Confirms Zero-Day Authentication Bypass Attacks\nhttp://feedproxy.google.com/~r/securityweek/~3/WxjfT4ZKi-0/zoho-confirms-zero-day-authentication-bypass-attacks\n\nZoho has shipped an urgent patch for an authentication bypass vulnerability in its ManageEngine ADSelfService Plus alongside a warning that the bug is already exploited in attacks.\nTracked as CVE-2021-40539, the security flaw is deemed critical as it could be exploited to take over a vulnerable system.\nread more (https://www.securityweek.com/zoho-confirms-zero-day-authentication-bypass-attacks)", "creation_timestamp": "2021-09-08T20:59:06.000000Z"}