Vulnerability identifier: #VU86688
Vulnerability risk: Critical
CVSSv3.1: 9.5 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H/E:H/RL:O/RC:C]
CVE-ID:
CWE-ID:
CWE-288
Exploitation vector: Network
Exploit availability: Yes
Vulnerable software:
ScreenConnect
Client/Desktop applications /
Software for system administration
Vendor: ConnectWise
Description
The vulnerability allows a remote attacker to bypass authentication.
The vulnerability exists due to improper authentication. A remote non-authenticated attacker can bypass authentication process and gain full access to the system.
Note, the vulnerability is being actively exploited in the wild.
Mitigation
Install updates from vendor's website.
Vulnerable software versions
ScreenConnect: 1.0.291.0 - 23.9.7.8804
External links
http://www.connectwise.com/company/trust/security-bulletins/connectwise-screenconnect-23.9.8
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
Yes. This vulnerability is being exploited in the wild.