CVE-2021-40539

Description from NVD

Zoho ManageEngine ADSelfService Plus version 6113 and prior is vulnerable to REST API authentication bypass with resultant remote code execution.

Information Acquisition Date:2022-02-18T04:48Z
CVSS 2.0: 7.5 HIGH CVSS 3.x: 9.8 CRITICAL

▼ CVSS3 Vec CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

▼ CVSS2 Vec AV:N/AC:L/Au:N/C:P/I:P/A:P

NVD References

 https://www.manageengine.com/products/self-service-password/kb/how-to-fix-authentication-bypass-vulnerability-in-REST-API.html
     source:MISC
     tags:Patch    Vendor Advisory    
 https://www.manageengine.com
     source:MISC
     tags:Vendor Advisory    
 http://packetstormsecurity.com/files/165085/ManageEngine-ADSelfService-Plus-Authentication-Bypass-Code-Execution.html
     source:MISC
     tags:Exploit    Third Party Advisory    VDB Entry    

This vulnerability may involve a PoC.

Refer to Information on External Sites

CVE InfomationExploits or more Infomation
mitreEXPLOIT DATABASE
NVD0day.today
vulmon.comgithub
CVE DetailsTwitter
JVN ENG JPN
Reconshell

Software Tag:

List of frequently cited URLs

URLNum of Times Referred to
https://lists.astaro.com/ASGV9-IPS-rules.html#024
http://twinybots.ch20
https://github.com/synacktiv/CVE-2021-405396
https://securityaffairs.co/wordpress/122293/security/cve-20...6
https://www.icrc.org/en/document/cyber-attack-icrc-what-we-...5
https://buff.ly/3vJVCtK4
https://twitter.com/campuscodi/status/14411855441432084484
https://www.lemagit.fr/actualites/252512231/La-Croix-Rouge-...4
https://bit.ly/3a9us5u3
https://lifa.rs/lifarsalertads3
https://attackerkb.com/topics/DMSNq5zgcW/cve-2021-405393
https://informatech.co/3zhM9JZ3
https://thehackernews.com/2021/09/cisa-warns-of-actively-ex...3
https://www.microsoft.com/security/blog/2021/11/08/threat-a...3
https://www.synacktiv.com/publications/how-to-exploit-cve-2...3
https://0x7c3.blogspot.com/2022/02/iran-behind-hack-of-red-...3
https://www.scmagazine.com/analysis/incident-response/red-c...3
https://www.manageengine.com/products/self-service-password...3
https://noticiasseguridad.com/vulnerabilidades/cve-2021-405...3
https://ipssignatures.appspot.com/?cve=CVE-2021-405393

Information from Twitter

User URL Info Source Date
xorJosh https://twitter.com/xorJosh/status/1635717153260175373/photo/1 Source xorJosh          1635717153260175373 2023/03/15
xorJosh https://www.synacktiv.com/en/publications/how-to-exploit-cv... Source xorJosh          1635717160377909269 2023/03/15
xorJosh https://www.manageengine.com/products/self-service-password... Source xorJosh          1635717160377909269 2023/03/15
ipssignatures https://twitter.com/xorJosh/status/1635717153260175373 Source ipssignatures    1635885039777972224 2023/03/15

List of frequently cited URLs

URLNum of Times Referred to
lists.astaro.com24
twinybots.ch20
github.com6
securityaffairs.co6
www.icrc.org5
buff.ly4
twitter.com4
www.lemagit.fr4
bit.ly3
lifa.rs3
attackerkb.com3
informatech.co3
thehackernews.com3
www.microsoft.com3
www.synacktiv.com3
0x7c3.blogspot.com3
www.scmagazine.com3
www.manageengine.com3
noticiasseguridad.com3
ipssignatures.appspot.com3

Information from Twitter

User URL Info Source
xorJosh twitter.com Show Tweet
xorJosh synacktiv.com Show Tweet
xorJosh manageengine.com Show Tweet
ipssignatures twitter.com Show Tweet
GitHub Search Results: Up to 10
NameURL
synacktiv/CVE-2021-40539 https://github.com/synacktiv/CVE-2021-40539
DarkSprings/CVE-2021-40539 https://github.com/DarkSprings/CVE-2021-40539
GitHub Search Results: Up to 10
NameURL
synacktiv/CVE-2021-40539 github.com
DarkSprings/CVE-2021-40539 github.com
2023/03/16 Score : 0
Added Har-sia Database : 2021/09/08
Last Modified : 2023/03/16
Highest Scored Date : 2021/09/17
Highest Score : 42