Lucene search
K

11 matches found

The Hacker News
The Hacker News
added 2024/03/05 4:18 p.m.74 views

Hackers Exploit ConnectWise ScreenConnect Flaws to Deploy TODDLERSHARK Malware

North Korean threat actors have exploited the recently disclosed security flaws in ConnectWise ScreenConnect to deploy a new malware called TODDLERSHARK. According to a report shared by Kroll with The Hacker News, TODDLERSHARK overlaps with known Kimsuky malware such as BabyShark and ReconShark...

10CVSS9.4AI score0.99959EPSS
Exploits9
hivepro
hivepro
added 2024/02/27 7:44 a.m.37 views

Attacks, Vulnerabilities and Actors 19 to 25 February 2024

For a detailed threat digest, download the pdf file here Summary HiveForce Labs recently made several significant discoveries in the realm of cybersecurity threats. In the past week alone, a total of fifteen attacks were executed, five vulnerabilities were uncovered, and five active adversaries...

7.5CVSS8AI score0.99959EPSS
Exploits9
Trend Micro Simply Security
Trend Micro Simply Security
added 2024/02/27 12:0 a.m.40 views

Threat Actor Groups, Including Black Basta, are Exploiting Recent ScreenConnect Vulnerabilities

This blog entry gives a detailed analysis of these recent ScreenConnect vulnerabilities. We also discuss our discovery of threat actor groups, including Black Basta and Bl00dy Ransomware gangs, that are actively exploiting CVE-2024-1708 and CVE-2024-1709 based on our telemetry...

10CVSS7.4AI score0.99959EPSS
Exploits9
Metasploit
Metasploit
added 2024/02/24 7:50 p.m.667 views

ConnectWise ScreenConnect Unauthenticated Remote Code Execution

This module exploits an authentication bypass vulnerability that allows an unauthenticated attacker to create a new administrator user account on a vulnerable ConnectWise ScreenConnect server. The attacker can leverage this to achieve RCE by uploading a malicious extension module. All versions of...

8.6AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/02/22 12:0 a.m.54 views

ConnectWise ScreenConnect Service < 23.9.8 Multiple Vulnerabilities

According to its version, the ConnectWise ScreenConnect Service remote access software installed on the remote Windows host is prior to 23.9.8. It is, therefore affected by multiple vulnerabilities: - A path-traversal vulnerability which may allow an attacker the ability to execute remote code or...

10CVSS7.7AI score0.99959EPSS
Exploits9References3
Circl
Circl
added 2024/02/21 5:22 p.m.9 views

CVE-2024-1708

creationtimestamp| type| source ---|---|--- 2024-02-21 17:22:10+00:00| seen| https://t.me/ctinow/189797 2024-02-21 17:31:30+00:00| seen| https://t.me/ctinow/189811 2024-02-22 10:40:05+00:00| exploited| https://t.me/truesecator/5446 2024-02-22 10:40:07+00:00| seen|...

8.4CVSS7.5AI score0.87624EPSS
Exploits5References39
NVD
NVD
added 2024/02/21 4:15 p.m.24 views

CVE-2024-1708

ConnectWise ScreenConnect 23.9.7 and prior are affected by path-traversal vulnerability, which may allow an attacker the ability to execute remote code or directly impact confidential data or critical systems...

8.4CVSS8.8AI score0.87624EPSS
Exploits5References4
Vulnrichment
Vulnrichment
added 2024/02/21 3:29 p.m.26 views

CVE-2024-1708 Improper limitation of a pathname to a restricted directory (“path traversal”)

ConnectWise ScreenConnect 23.9.7 and prior are affected by path-traversal vulnerability, which may allow an attacker the ability to execute remote code or directly impact confidential data or critical systems...

8.4CVSS8AI score0.87624EPSS
Exploits5References2
Cvelist
Cvelist
added 2024/02/21 3:29 p.m.111 views

CVE-2024-1708 Improper limitation of a pathname to a restricted directory (“path traversal”)

ConnectWise ScreenConnect 23.9.7 and prior are affected by path-traversal vulnerability, which may allow an attacker the ability to execute remote code or directly impact confidential data or critical systems...

8.4CVSS9.5AI score0.87624EPSS
Exploits5References2
CVE
CVE
added 2024/02/21 3:29 p.m.202 views

CVE-2024-1708

CVE-2024-1708/1709 affect ConnectWise ScreenConnect (Server 23.9.7 and earlier). A path-traversal flaw (CVE-2024-1708) may allow remote code execution; an authentication-bypass flaw (CVE-2024-1709) enables access without credentials, potentially leading to RCE. Public exploit tooling exists (e.g....

8.4CVSS9.6AI score0.87624EPSS
In wildExploits5References4Affected Software1
GithubExploit
GithubExploit
added 2024/02/21 5:40 a.m.91 views

Exploit for Path Traversal in Connectwise Screenconnect

CVE-2024-1708 and CVE-2024-1709 A Proof of Concept developed...

10CVSS7.9AI score0.99959EPSS
Exploits9
Rows per page
Query Builder