CVE-2024-1709: ConnectWise ScreenConnect Auth Bypass

Score: 10
CRITICAL
Published: 2024-02-19Affected: ScreenConnect < 23.9.8CWE-288 β†—

What is the ScreenConnect vulnerability?

An authentication bypass in ConnectWise ScreenConnect, a widely used remote support tool. Attackers can bypass authentication and create admin accounts to execute code on connected endpoints β€” affecting thousands of MSP-managed systems.

Impact & Exploitation

Exploited within 24 hours. Ransomware groups (LockBit) targeted MSP infrastructure. Thousands of endpoints compromised through a single ScreenConnect server.

Related Resources

πŸ›‘οΈ Notable Vulnerabilities

πŸ”— External References

Precogs Logo

Precogs Research

This vulnerability intelligence report was analyzed and enriched by the Precogs AI Security Team. Our researchers continuously monitor emerging threats across AI code, LLM pipelines, and binary architectures to ensure accurate real-time remediation guidance.

Base Score

CVSS10
SeverityCRITICAL
CWECWE-288
Published2024-02-19

Tags

remote-accessauth-bypassransomwaremsp

Quick Links

Is your system affected?

Precogs AI detects ConnectWise ScreenConnect Auth Bypass in compiled binaries and firmware β€” even without source code.

Request Deep Analysis

Is Your System Still Exposed to Critical CVEs?

Vulnerabilities like CVE-2024-1709 ConnectWise ScreenConnect Auth Bypass don’t just exist in source code β€” they persist in compiled binaries, containers, and embedded systems. Precogs AI detects vulnerable components across your entire stack β€” even when source code isn’t available.

Request Deep AnalysisBook a demo