ConnectWise ScreenConnect path traversal enabling unauthenticated RCE. Ransomware groups mass-exploited this within 48 hours. Update to 23.9.8+ or take instances offline. If exposed, assume compromise and begin IR immediately.
ConnectWise ScreenConnect path traversal allowing unauthenticated code execution via the SetupWizard endpoint.
Exploit-DB.ai delivers real-time AI-triaged zero-day alerts directly to your inbox.
Activate Supernova →