** DISPUTED ** Connectwise Automate... CVE-2023-23130

- AV AC AU C I A
发布: 2023-02-01
修订: 2024-04-11

** DISPUTED ** Connectwise Automate 2022.11 is vulnerable to Cleartext authentication. Authentication is being done via HTTP (cleartext) with SSL disabled. OTE: the vendor's position is that, by design, this is controlled by a configuration option in which a customer can choose to use HTTP (rather than HTTPS) during troubleshooting.

0%
暂无可用Exp或PoC
当前有1条受影响产品信息