CVE advisoryKnown Exploit
CVE-2021-40539
Zoho ManageEngine ADSelfService Plus: Authentication Bypass and Remote Code Execution
Halo Surface Signal: 5 out of 5 — more likely to be public-facing.
Zoho ManageEngine ADSelfService Plus has a vulnerability allowing authentication bypass and remote code execution. This could lead to unauthorized system control and data compromise. This presents a significant business risk.