Zoho Confirms Zero-Day Authentication Bypass Attacks

Zoho has shipped an urgent patch for an authentication bypass vulnerability in its ManageEngine ADSelfService Plus alongside a warning that the bug is already exploited in attacks.
Tracked as CVE-2021-40539, the security flaw is deemed critical as it could be exploited to take over a vulnerable system.
read moreSecurityWeek RSS FeedRead More