An issue was discovered in ConnectWise Control (formerly known as ScreenConnect) 19.3.25270.7185. There is a user enumeration vulnerability, allowing an unauthenticated attacker to determine with certainty if an account exists for a given username.
oryginał ENCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:NConnectwise Control
APPConnectwise19.3.25270.7185≤ 19.2.24707
Powiązane podatności
In ConnectWise Control through 22.9.10032 (formerly known as ScreenConnect), after an executable file is signe...
An issue was discovered in ConnectWise Control (formerly known as ScreenConnect) 19.3.25270.7185. There is a C...
ConnectWise Control before 22.9.10032 (formerly known as ScreenConnect) fails to validate user-supplied parame...
An issue was discovered in ConnectWise Control (formerly known as ScreenConnect) 19.3.25270.7185. The server a...
An issue was discovered in ConnectWise Control (formerly known as ScreenConnect) 19.3.25270.7185. CSRF can be ...