ConnectWise has released software updates to address two security flaws in its ScreenConnect remote desktop and access software, including a critical bug that could enable remote code execution on affected systems.
The vulnerabilities, which currently lack CVE identifiers, are listed below –
Authentication bypass using an alternate path or channel (CVSS score: 10.0)
Improper limitation of
Source:: The Hackers News