The CISA has added a critical severity Java deserialization vulnerability affecting multiple Zoho ManageEngine products to its catalog of bugs exploited in the wild that need to be patched immediately by FCEB agencies.