Connectwise Schwachstellen

Zeitverlauf

Typ

Network Management Software	26

Produkt

ConnectWise Control	10
ConnectWise Automate	8
ConnectWise ScreenConnect	4
ConnectWise Manage	2
ConnectWise ScreenConnnect	1

Massnahmen

Official Fix	9
Temporary Fix	0
Workaround	0
Unavailable	0
Not Defined	17

Ausnutzbarkeit

High	0
Functional	0
Proof-of-Concept	0
Unproven	0
Not Defined	26

Zugriffsart

Not Defined	0
Physical	0
Local	1
Adjacent	4
Network	21

Authentisierung

Not Defined	0
High	2
Low	9
None	15

Benutzeraktivität

Not Defined	0
Required	7
None	19

C3BM Index

CVSSv3 Base

≤1	0
≤2	0
≤3	0
≤4	1
≤5	3
≤6	5
≤7	9
≤8	4
≤9	3
≤10	1

CVSSv3 Temp

≤1	0
≤2	0
≤3	0
≤4	1
≤5	3
≤6	6
≤7	10
≤8	2
≤9	3
≤10	1

VulDB

≤1	0
≤2	0
≤3	1
≤4	3
≤5	5
≤6	6
≤7	7
≤8	3
≤9	0
≤10	1

NVD

≤1	0
≤2	0
≤3	0
≤4	0
≤5	1
≤6	4
≤7	4
≤8	2
≤9	6
≤10	4

CNA

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	1
≤10	1

Hersteller

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Research

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Exploit 0-day

<1k	4
<2k	19
<5k	3
<10k	0
<25k	0
<50k	0
<100k	0
≥100k	0

Exploit heute

<1k	21
<2k	5
<5k	0
<10k	0
<25k	0
<50k	0
<100k	0
≥100k	0

Exploitmarktvolumen

🔴 CTI Aktivitäten

Affected Products (6): Automate (8), Control (10), Manage (2), ManagedITSync (1), ScreenConnect (4), ScreenConnnect (1)

Veröffentlicht	Base	Temp	Schwachstelle	Prod	Aus	Mas	EPSS	CTI	CVE
21.02.2024	6.3	6.0	ConnectWise ScreenConnnect schwache Authentisierung	Network Management Software	Not Defined	Official Fix	0.00000	0.05	CVE-2024-27215
21.02.2024	9.9	9.9	ConnectWise ScreenConnect schwache Authentisierung	Network Management Software	Not Defined	Official Fix	0.94464	0.05	CVE-2024-1709
21.02.2024	7.6	7.6	ConnectWise ScreenConnect Directory Traversal	Network Management Software	Not Defined	Not Defined	0.00049	0.04	CVE-2024-1708
02.02.2024	6.8	6.8	ConnectWise ScreenConnect erweiterte Rechte	Network Management Software	Not Defined	Not Defined	0.00165	0.04	CVE-2023-47257
02.02.2024	5.4	5.4	ConnectWise ScreenConnect Proxy Setting erweiterte Rechte	Network Management Software	Not Defined	Not Defined	0.00042	0.02	CVE-2023-47256
13.02.2023	6.4	6.4	ConnectWise Control Code Signing schwache Verschlüsselung	Network Management Software	Not Defined	Not Defined	0.00143	0.04	CVE-2023-25718
13.02.2023	7.1	7.0	ConnectWise Control ConnectWiseControl.Client.exe erweiterte Rechte	Network Management Software	Not Defined	Official Fix	0.00274	0.02	CVE-2023-25719
01.02.2023	4.8	4.7	ConnectWise Automate schwache Verschlüsselung	Network Management Software	Not Defined	Not Defined	0.00135	0.02	CVE-2023-23130
01.02.2023	4.5	4.4	ConnectWise Control schwache Verschlüsselung	Network Management Software	Not Defined	Not Defined	0.00135	0.02	CVE-2023-23127
01.02.2023	5.2	5.1	ConnectWise Automate erweiterte Rechte	Network Management Software	Not Defined	Not Defined	0.00063	0.00	CVE-2023-23126

16 weitere Einträge werden nicht mehr angezeigt

🔒 Login Required

You need to signup and login to see more of the remaining 16 results.

◂ ZurückÜbersichtWeiter ▸

Do you know our Splunk app?

Download it now for free!