.png?width=220&height=44&name=Nuc-logo-sketched-1%20(1).png "Nuc-logo-sketched-1 (1)"){kind=logo}
ConnectWise ScreenConnect Vulnerability
ConnectWise ScreenConnect is a software that Managed Service Providers use to monitor and manage systems remotely. On February 19th, ConnectWise issued an advisory that all versions below 23.9.8 of ScreenConnect had two vulnerabilities (CVE-2024-1709 and CVE-2024-1708) and urged their users to patch immediately. This carried a CVSS Score of 10 (highest severity).
Nucleus received notice on Monday, February 19th and patched within 2 hours of ConnectWise publishing the alert and releasing the patch. At that time, this vulnerability had not been exploited in the wild. In summary:
- Nucleus patched the vulnerability quickly: Nucleus patched the vulnerability on Monday February 19th immediately despite it being a holiday. Nucleus took immediate action and worked diligently to manually implement the patch.
- ConnectWise website has a detailed summary of the issue: For a detailed summary of this issue, visit the ConnectWise website.
