February 21, 2024
ConnectWise has released software updates to address two security flaws in its ScreenConnect remote desktop and access software, including a critical bug that could enable remote code execution on affected systems.
The vulnerabilities, which currently lack CVE identifiers, are listed below –
The vulnerabilities, which currently lack CVE identifiers, are listed below –
Authentication bypass using an alternate path or channel (CVSS score: 10.0)
Improper limitation of
Article posted by: https://thehackernews.com/2024/02/critical-flaws-found-in-connectwise.html
——————————————————————————————————————–
Infocerts, 5B 306 Riverside Greens, Panvel, Raigad 410206 Maharashtra, India
Contact us – https://www.infocerts.com
