CVE-2024-1708

HIGH

KEV

Ransomware

Exploit

설명

ConnectWise ScreenConnect 23.9.7 and prior are affected by path-traversal vulnerability, which may allow an attacker

the ability to execute remote code or directly impact confidential data or critical systems.

Score Summary

CVSS Score: 8.4
Version: 3.1
Risk Score: 9.20
Attack Vector: Network
Low Complexity
High Privileges
User Interaction Required
Scope Changed
High Confidentiality Impact
High Integrity Impact
High Availability Impact

Details

Published: 02/21/2024(2 years ago)
Modified: 04/28/2026(last month)
Source: KEV, NVD
Products: 1

CISA KEV Listing

Ransomware

Vendor / Project: ConnectWise
Product: ScreenConnect

Date Added: 04/28/2026
Due Date: 05/12/2026Overdue 29d

Required Action

Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.

Listed in KISA bulletin

This CVE is referenced in a KISA security bulletin (Korean only).

Bulletin ID: 71365
Published: 2024-03-07

boho.or.kr

Vulnerability Lifecycle

NVDPublished02/21/2024
KISAKISA Listed03/07/2024
CISA KEV

CWE Weakness Classification

CWE-22
NVD
Primary

References (4)

NVD
Advisory
https://www.connectwise.com/company/trust/security-bulletins/connectwise-screenconnect-23.9.8
NVD
Exploit
https://www.huntress.com/blog/a-catastrophe-for-control-understanding-the-screenconnect-authentication-bypass
NVD

Affected Products (1)

ConnectWise ScreenConnect 23.9.7 and prior are affected by path-traversal vulnerability, which may allow an attacker the ability to execute remote code or directly impact confidential data or critical systems.

StatusAnalyzed

KEV Listed

04/28/2026

NVDLast Modified04/28/2026

CISA KEVDue Date05/12/2026

Third Party Advisory

https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2024-1708

NVD

https://www.microsoft.com/en-us/security/blog/2026/04/06/storm-1175-focuses-gaze-on-vulnerable-web-facing-assets-in-high-tempo-medusa-ransomware-operations/