Advanced

ConnectWise ScreenConnect Vulnerability - What You Should Know

Critical security advisory covering CVE-2024-1709 (CVSS 10.0) and CVE-2024-1708 (CVSS 8.4) — authentication bypass and path traversal vulnerabilities in ConnectWise ScreenConnect.

Because of its deep administrative capabilities, if an attacker gains access to ScreenConnect, the consequences are severe — full administrative control over all connected endpoints becomes accessible.

ScreenConnect is used extensively by Managed Service Providers (MSPs), which makes it a particularly high-value target: compromising a single MSP's ScreenConnect server can cascade into attacks against every client and endpoint that MSP manages.

"This is not a vulnerability but a feature of ScreenConnect which allows an administrator to create extensions that execute .NET code as SYSTEM on the ScreenConnect server."

Sign in to read this course

A free account unlocks all 514 courses. 20 are readable without one.

What's inside

8 sections
  1. 1 Table of Contents
  2. 2 Module 1: Overview
  3. 3 Module 2: Detect and Respond
  4. 4 CVE Reference Table
  5. 5 Attack Flow Diagram
  6. 6 Vulnerability Technical Diagram
  7. 7 Detection and Response Checklist
  8. 8 MITRE ATT&CK Mapping

More Vulnerability Briefings courses

View all 30

Interested in this course?

Contact us to book it or get a custom training plan for your team.