vulnerability

ConnectWise ScreenConnect Client: CVE-2024-1708: Security Fix

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
8	(AV:N/AC:M/Au:M/C:C/I:C/A:C)	Feb 21, 2024	Dec 3, 2024	Jul 3, 2025

Severity

CVSS

(AV:N/AC:M/Au:M/C:C/I:C/A:C)

Published

Feb 21, 2024

Added

Dec 3, 2024

Modified

Jul 3, 2025

Description

ConnectWise ScreenConnect 23.9.7 and prior are affected by path-traversal vulnerability, which may allow an attacker

the ability to execute remote code or directly impact confidential data or critical systems.

Solution

connectwise-screenconnect-client-upgrade-latest

References

CWE-22
CVE-2024-1708
https://attackerkb.com/topics/CVE-2024-1708
URL-https://www.connectwise.com/company/trust/security-bulletins/connectwise-screenconnect-23.9.8
URL-https://www.huntress.com/blog/a-catastrophe-for-control-understanding-the-screenconnect-authentication-bypass

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today