On February 19, ConnectWise reported two vulnerabilities in its ScreenConnect product, CVE-2024-1708 and 1709. The first is an authentication bypass vulnerability, and the second is a path traversal vulnerability.
Source: Security Intelligence
Remote access risks on the rise with CVE-2024-1708 and CVE-2024-1709
- Scumbag puts ‘stolen’ Nokia source code, SSH and RSA keys, more up for sale
- Canada arrests suspected hacker over breach of 160+ Snowflake users’ data
- Cyberthreats linked to foreign actors aim to hinder Election Day proceedings
- DocuSign’s API used to lure victims into e-signing fake invoices
- Schneider Electric ransomware crew demands $125k paid in baguettes