Filter
-Infinity
0

Trending

Last week
Last month
Last year

The RegisterMedusa ransomware infects 300+, uses 'triple extortion'

First published (updated )
News
The Register

Dark ReadingHow Public & Private Sectors Can Better Align Cyber Defense

Exploited
Zeroday
First published (updated )
News
Dark Reading

The RegisterRussia's Sandworm caught snarfing credentials, data from American and Brit orgs

Exploited
First published (updated )
News
The Register

Dark ReadingMicrosoft: Russia's Sandworm APT Exploits Edge Bugs Globally

Exploited
First published (updated )
News
Dark Reading

The RegisterChinese snoops exploit F5, ConnectWise bugs to sell access

First published (updated )
News
The Register

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

The RegisterUS to probe Change Healthcare's data protection standards as lawsuits mount

First published (updated )
News
The Register

BleepingComputerMagnet Goblin hackers use 1-day flaws to drop custom Linux malware

First published (updated )
News
BleepingComputer

BleepingComputerScreenConnect flaws exploited to drop new ToddleShark malware

First published (updated )
News
BleepingComputer

BleepingComputerBlack Basta, Bl00dy ransomware gangs join ScreenConnect attacks

First published (updated )
News
BleepingComputer

ConnectWise ControlConnectWise ScreenConnect Authentication Bypass Vulnerability

critical
10
Exploited
First published (updated )
CVE-2024-1709

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

ConnectWise ControlImproper limitation of a pathname to a restricted directory (“path traversal”)

high
8.4
First published (updated )
CVE-2024-1708

BleepingComputerConnectWise urges ScreenConnect admins to patch critical RCE flaw

Exploited
First published (updated )
News
BleepingComputer

ConnectWiseCode Injection

high
8.1
First published (updated )
CVE-2023-47257

ConnectWiseConnectWise ScreenConnect through 23.8.4 allows local users to connect to arbitrary relay servers vi…

medium
5.5
First published (updated )
CVE-2023-47256

BleepingComputerCISA warns of hackers exploiting ZK Java Framework RCE flaw

Exploited
First published (updated )
News
BleepingComputer

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

ConnectWiseConnectWise Control before 22.9.10032 (formerly known as ScreenConnect) fails to validate user-suppl…

high
8.8
First published (updated )
CVE-2023-25719

ConnectWiseIn ConnectWise Control through 22.9.10032 (formerly known as ScreenConnect), after an executable fil…

critical
9.8
First published (updated )
CVE-2023-25718

ConnectWiseConnectwise Automate 2022.11 is vulnerable to Clickjacking. The login screen can be iframed and used…

medium
6.1
First published (updated )
CVE-2023-23126

ConnectWise ManageIn Connectwise Control 22.8.10013.8329, the login page does not implement HSTS headers therefore not…

medium
5.3
First published (updated )
CVE-2023-23127

ConnectWise ManageConnectwise Control 22.8.10013.8329 is vulnerable to Cross Origin Resource Sharing (CORS). The vendo…

medium
6.1
First published (updated )
CVE-2023-23128

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

ConnectWiseConnectwise Automate 2022.11 is vulnerable to Cleartext authentication. Authentication is being done…

medium
5.9
First published (updated )
CVE-2023-23130

ConnectWise ControlConnectWise - ScreenConnect Session Code Bypass

medium
5.9
First published (updated )
CVE-2022-36781

ConnectWiseXEE

critical
9.8
First published (updated )
CVE-2021-35066

ConnectWiseSQL Injection

high
7.5
First published (updated )
CVE-2021-32582

ConnectWiseThe Agent Update System in ConnectWise Automate before 2020.8 allows Privilege Escalation because th…

high
8.8
First published (updated )
CVE-2020-15838

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

ConnectWiseConnectWise Automate through 2020.x has insufficient validation on certain authentication paths, all…

critical
9.8
First published (updated )
CVE-2020-15027

ConnectWiseSQL Injection

high
7.5
First published (updated )
CVE-2020-15008

ConnectWiseSQL Injection

high
8.8
First published (updated )
CVE-2020-14159

ConnectWiseAn issue was discovered in ConnectWise Control (formerly known as ScreenConnect) 19.3.25270.7185. Ce…

medium
6.5
First published (updated )
CVE-2019-16515

ConnectWiseAn issue was discovered in ConnectWise Control (formerly known as ScreenConnect) 19.3.25270.7185. Th…

medium
5.3
First published (updated )
CVE-2019-16516

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203