Description
ConnectWise ScreenConnect has an authentication bypass vulnerability. An attacker can bypass the authentication with a specially crafted path and get access to the setup wizard.
Remediation
Upgrade to the latest version of ScreenConnect
References
Related Vulnerabilities
Oracle Database Server CVE-2019-2913 Vulnerability (CVE-2019-2913)
WordPress Plugin ThemeGrill Demo Importer Security Bypass (1.6.1)
Jenkins 7PK - Security Features Vulnerability (CVE-2014-9635)
Django Improper Input Validation Vulnerability (CVE-2014-3730)
SugarCRM Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2019-17300)