A Proof of Concept developed by @watchTowr to exploit an authentication bypass to add a new administrative user in ConnectWise ScreenConnect. This is the first step in a trivial Remote Command Execution chain.
Follow the watchTowr Labs Team for our Security Research
- https://labs.watchtowr.com/
- https://twitter.com/watchtowrcyber
- https://www.bleepingcomputer.com/news/security/connectwise-urges-screenconnect-admins-to-patch-critical-rce-flaw/
- https://www.bleepingcomputer.com/news/security/screenconnect-critical-bug-now-under-attack-as-exploit-code-emerges/
- https://www.connectwise.com/company/trust/security-bulletins/connectwise-screenconnect-23.9.8
- Metasploit RCE module - rapid7/metasploit-framework#18870