ManageEngine is aware of the recent post by CrowdStrike regarding their observation of threat activity potentially exploiting CVE-2021-40539.

CVE-2021-40539 refers to a vulnerability that impacted ManageEngine ADSelfService Plus versions prior to September 2021 (builds 6113 and below). We want to highlight that patches addressing this vulnerability were released in September 2021. For detailed information on this issue, please refer to the advisory we released at https://www.manageengine.com/products/self-service-password/advisory/CVE-2021-40539.html.

Please note that CVE-2021-40539 can only be exploited if you are using vulnerable versions of our software released before September 2021 (builds 6113 and lower). We strongly advise all our customers to regularly upgrade and utilize the most recent versions of our products to ensure the utmost security of our products.

We have updated our security advisory with the latest Indicators of Compromise (IoCs) published by CrowdStrike. We have also initiated communication with them to gather additional information regarding their observations.

If you have any questions or concerns, please do not hesitate to reach out to us at support@adselfserviceplus.com.