An issue was discovered in ConnectWise Control (formerly known as ScreenConnect) 19.3.25270.7185. Certain HTTP security headers are not used.
oryginał ENCVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:NConnectwise Control
APPConnectwise19.3.25270.7185
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
Referencje
Powiązane podatności
CVE-2023-25718CRITICAL9.8ten sam produkt
In ConnectWise Control through 22.9.10032 (formerly known as ScreenConnect), after an executable file is signe...
CVE-2019-16517CRITICAL9.8ten sam produkt
An issue was discovered in ConnectWise Control (formerly known as ScreenConnect) 19.3.25270.7185. There is a C...
CVE-2023-25719HIGH8.8ten sam produkt
ConnectWise Control before 22.9.10032 (formerly known as ScreenConnect) fails to validate user-supplied parame...
CVE-2019-16514HIGH7.2ten sam produkt
An issue was discovered in ConnectWise Control (formerly known as ScreenConnect) 19.3.25270.7185. The server a...
CVE-2019-16513HIGH8.8ten sam produkt
An issue was discovered in ConnectWise Control (formerly known as ScreenConnect) 19.3.25270.7185. CSRF can be ...