Description
ConnectWise ScreenConnect 23.9.7 and prior are affected by an Authentication Bypass Using an Alternate Path or Channel vulnerability, which may allow an attacker direct access to confidential information or critical systems.
CVSS breakdown
CVSS 3.1
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Changed
Confidentiality
High
Integrity
High
Availability
High
Affected products
- ConnectWise / ScreenConnect0 β 23.9.7
Exploits & PoCs
- nucleiConnectWise ScreenConnect 23.9.7 - Authentication Bypassby johnk3r
References
- MISChttps://www.connectwise.com/company/trust/security-bulletins/connectwise-screenconnect-23.9.8
- MISChttps://www.huntress.com/blog/vulnerability-reproduced-immediately-patch-screenconnect-23-9-8
- MISChttps://www.huntress.com/blog/detection-guidance-for-connectwise-cwe-288-2
- MISChttps://www.bleepingcomputer.com/news/security/connectwise-urges-screenconnect-admins-to-patch-critical-rce-flaw/
- MISChttps://github.com/watchtowrlabs/connectwise-screenconnect_auth-bypass-add-user-poc
- EXPLOIThttps://github.com/rapid7/metasploit-framework/pull/18870
- MISChttps://www.horizon3.ai/attack-research/red-team/connectwise-screenconnect-auth-bypass-deep-dive/
- MISChttps://techcrunch.com/2024/02/21/researchers-warn-high-risk-connectwise-flaw-under-attack-is-embarrassingly-easy-to-exploit/
- MISChttps://www.securityweek.com/connectwise-confirms-screenconnect-flaw-under-active-exploitation/
- MISChttps://www.huntress.com/blog/a-catastrophe-for-control-understanding-the-screenconnect-authentication-bypass