Menu

  • Alerts
  • Incidents
  • News
  • APTs
  • Cyber Decoded
  • Cyber Hygiene
  • Cyber Review
  • Cyber Tips
  • Definitions
  • Malware
  • Threat Actors
  • Tutorials

Useful Tools

  • Password generator
  • Report an incident
  • Report to authorities
No Result
View All Result
CTF Hack Havoc
CyberMaterial
  • Education
    • Cyber Decoded
    • Definitions
  • Information
    • Alerts
    • Incidents
    • News
  • Insights
    • Cyber Hygiene
    • Cyber Review
    • Tips
    • Tutorials
  • Support
    • Contact Us
    • Report an incident
  • About
    • About Us
    • Advertise with us
Get Help
Hall of Hacks
  • Education
    • Cyber Decoded
    • Definitions
  • Information
    • Alerts
    • Incidents
    • News
  • Insights
    • Cyber Hygiene
    • Cyber Review
    • Tips
    • Tutorials
  • Support
    • Contact Us
    • Report an incident
  • About
    • About Us
    • Advertise with us
Get Help
No Result
View All Result
Hall of Hacks
CyberMaterial
No Result
View All Result
Home Alerts

ConnectWise Resolves ScreenConnect Issues

February 20, 2024
Reading Time: 2 mins read
in Alerts

ConnectWise has recently resolved two vulnerabilities in ScreenConnect, addressing potential risks of remote code execution and compromising confidential data. Although there’s no evidence of exploitation in the wild, ConnectWise emphasizes the urgency for on-premise partners to promptly address these identified security issues. ScreenConnect, previously known as ConnectWise Control, serves as a remote desktop software solution favored by managed service providers and businesses, though it has also attracted attention from cybercriminals, including ransomware groups and tech support scammers.

The vulnerabilities, affecting ScreenConnect versions 23.9.7 and earlier, were reported through ConnectWise’s vulnerability disclosure channel on February 13, 2024. These vulnerabilities are categorized as authentication bypass and improper limitation of a pathname to a restricted directory, posing significant risks if exploited. ConnectWise underscores the critical importance of partners using self-hosted or on-premise deployments to promptly update their servers to version 23.9.8 to apply the necessary patches and mitigate potential risks.

ConnectWise is also providing updated versions of releases 22.4 through 23.9.7 to address the critical issues, but strongly recommends that partners prioritize updating to ScreenConnect version 23.9.8. By taking immediate action to apply these patches, partners can significantly reduce the likelihood of exploitation and enhance the security posture of their ScreenConnect deployments. These proactive measures are crucial for mitigating potential threats and protecting sensitive data and critical systems from unauthorized access and compromise.

Reference:
  • ConnectWise ScreenConnect 23.9.8 security fix
Tags: ConnectWiseCyber AlertCyber Alerts 2024Cyber RiskCyber threatCybersecurityFebruary 2024ScreenConnectVulnerabilities
ADVERTISEMENT

Related Posts

Chrome Extensions Leak Data And API Keys

Chrome Extensions Leak Data And API Keys

June 6, 2025
Chrome Extensions Leak Data And API Keys

AMOS Stealer Hits macOS Via Fake CAPTCHA

June 6, 2025
Chrome Extensions Leak Data And API Keys

BADBOX Turns 1M+ IoT Devices Into Proxies

June 6, 2025
UNC6040 Vishing Group Target Salesforce Data

UNC6040 Vishing Group Target Salesforce Data

June 5, 2025
New Chaos RAT Variant Hits Windows and Linux

New Chaos RAT Variant Hits Windows and Linux

June 5, 2025
New Chaos RAT Variant Hits Windows and Linux

FBI Warns Hedera NFT Airdrop Crypto Scam

June 5, 2025

Latest Alerts

AMOS Stealer Hits macOS Via Fake CAPTCHA

Chrome Extensions Leak Data And API Keys

BADBOX Turns 1M+ IoT Devices Into Proxies

FBI Warns Hedera NFT Airdrop Crypto Scam

New Chaos RAT Variant Hits Windows and Linux

UNC6040 Vishing Group Target Salesforce Data

Subscribe to our newsletter

    Latest Incidents

    German Dog Rescue IG Hacked For Ransom

    Hack Attempt Hits German Police Phone System

    InfoJobs Spain Hit By Credential Stuffing

    KiranaPro Startup Hacked All Data Wiped

    Nervos Bridge Paused After $3.9 Million Hack

    Ukraine GUR Claims Tupolev Data Theft Hack

    CyberMaterial Logo
    • About Us
    • Contact Us
    • Jobs
    • Legal and Privacy Policy
    • Site Map

    © 2025 | CyberMaterial | All rights reserved

    Welcome Back!

    Login to your account below

    Forgotten Password?

    Retrieve your password

    Please enter your username or email address to reset your password.

    Log In

    Add New Playlist

    No Result
    View All Result
    • Alerts
    • Incidents
    • News
    • Cyber Decoded
    • Cyber Hygiene
    • Cyber Review
    • Definitions
    • Malware
    • Cyber Tips
    • Tutorials
    • Advanced Persistent Threats
    • Threat Actors
    • Report an incident
    • Password Generator
    • About Us
    • Contact Us
    • Advertise with us

    Copyright © 2025 CyberMaterial