CVE-2024-1709

CVSS V2 None CVSS V3 None

Description

ConnectWise ScreenConnect 23.9.7 and prior are affected by an Authentication Bypass Using an Alternate Path or Channel vulnerability, which may allow an attacker direct access to confidential information or critical systems.

Overview

CVE ID
CVE-2024-1709

Assigner
cisa-cg

Vulnerability Status
PUBLISHED

Published Version
2024-02-21T15:36:03.960Z

Last Modified Date
2024-06-14T16:47:20.624Z

Weakness Enumerations

CWE	URL
CWE-288	http://cwe.mitre.org/data/definitions/288.html

References

Reference URL	Reference Tags
https://www.connectwise.com/company/trust/security-bulletins/connectwise-screenconnect-23.9.8
https://www.huntress.com/blog/vulnerability-reproduced-immediately-patch-screenconnect-23-9-8
https://www.huntress.com/blog/detection-guidance-for-connectwise-cwe-288-2
https://www.bleepingcomputer.com/news/security/connectwise-urges-screenconnect-admins-to-patch-critical-rce-flaw/
https://github.com/watchtowrlabs/connectwise-screenconnect_auth-bypass-add-user-poc
https://github.com/rapid7/metasploit-framework/pull/18870
https://www.horizon3.ai/attack-research/red-team/connectwise-screenconnect-auth-bypass-deep-dive/
https://techcrunch.com/2024/02/21/researchers-warn-high-risk-connectwise-flaw-under-attack-is-embarrassingly-easy-to-exploit/
https://www.securityweek.com/connectwise-confirms-screenconnect-flaw-under-active-exploitation/
https://www.huntress.com/blog/a-catastrophe-for-control-understanding-the-screenconnect-authentication-bypass

Sources

Source Name	Source URL
NIST	https://nvd.nist.gov/vuln/detail/CVE-2024-1709
MITRE	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1709

History

Created	Old Value	New Value	Data Type	Notes
2024-06-26 06:12:08				Added to TrackCVE