Critical Vulnerabilities in ConnectWise ScreenConnect, PostgreSQL JDBC, and VMware EAP (CVE-2024-1597, CVE-2024-22245) | allinfosecnews.com

Feb. 21, 2024, 3:40 p.m. | MalBot

Malware Analysis, News and Indicators - Latest topics malware.news

Critical Vulnerabilities in ConnectWise ScreenConnect, PostgreSQL JDBC, and VMware EAP (CVE-2024-1597, CVE-2024-22245)

ConnectWise has addressed a CVSS 10 vulnerability in its ScreenConnect product, a desktop and mobile support software providing fast and secure remote access solutions.

In addition to the critical vulnerability, ConnectWise also patched a high-severity path traversal vulnerability (CVSS: 8.4) in the same product, which attackers with high privileges can exploit.

ConnectWise has stated that the vulnerabilities were reported on February 13; they have yet to be assigned …

access addition connectwise critical critical vulnerabilities critical vulnerability cve cvss cvss 10 desktop eap fast high jdbc mobile path postgresql product remote access screenconnect secure remote access severity software solutions support vmware vulnerabilities vulnerability

More from malware.news / Malware Analysis, News and Indicators - Latest topics

New Redline Version: Uses Lua Bytecode, Propagates Through GitHub 19 hours ago | malware.news

bytecode code detect found +12

Cybersecurity firm Darktrace sold to Thoma Bravo for $5.3 billion 1 day, 8 hours ago | malware.news

acquisition article cybersecurity darktrace +5

Arctic Wolf Recognized as a Leader in Frost & Sullivan Managed Detection and Response Report 1 day, 8 hours ago | malware.news

amp and response april arctic +20

CVE-2024-29204, CVE-2024-24996: Critical Vulnerabilities in Ivanti Avalanche 1 day, 8 hours ago | malware.news

april avalanche components critical +19

Showcasing Artwork by Max for Autism Awareness Month 1 day, 9 hours ago | malware.news

art article artwork autism +6

TikTok, Flowmon, Cisco, Brokewell, RuggedCom, Deepfakes, Non-Competes, Aaran Leyland - SWN #381 1 day, 10 hours ago | malware.news

article cisco deepfakes flowmon +6

Kaiser Permanente notifies 13.4M patients of potential data exposure 1 day, 10 hours ago | malware.news

apps article data data exposure +16

Impact of organizational structure on ransomware outcomes: Where does your org fit in? 1 day, 10 hours ago | malware.news

article challenges core security detection +15

VA is warning veterans about Change Healthcare cyberattack, secretary says 1 day, 11 hours ago | malware.news

alerting article attack change +14

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations

View on infosec-jobs.com

Associate Compliance Advisor

@ SAP | Budapest, HU, 1031

View on infosec-jobs.com

DevSecOps Engineer

@ Qube Research & Technologies | London

View on infosec-jobs.com

Software Engineer, Security

@ Render | San Francisco, CA or Remote (USA & Canada)

View on infosec-jobs.com

Associate Consultant

@ Control Risks | Frankfurt, Hessen, Germany

View on infosec-jobs.com

Senior Security Engineer

@ Activision Blizzard | Work from Home - CA

View on infosec-jobs.com