Security News > 2020 > June > Running ConnectWise Automate on-prem? Fix this high-risk API vulnerability

Running ConnectWise Automate on-prem? Fix this high-risk API vulnerability
2020-06-15 14:17

ConnectWise has fixed a high-severity vulnerability affecting a ConnectWise Automate API and is urging users who run the solution on their premises to implement the provided hotfixes.

The vulnerability affects on-premise and cloud instances of ConnectWise Automate versions 2020.5 and earlier.

ConnectWise has applied the hotfixes and hardening measures required to plug the security holes and is urging on-premise partners to do the same based on their Automate instance version.

"To protect our customers, ConnectWise does not publicly disclose or confirm security vulnerabilities until ConnectWise has conducted an analysis of the product and has issued fixes and/or mitigations," the company noted.

ConnectWise is investigating the matter and will likely come up with new hotfixes soon, so ConnectWise Automate users should keep an eye out for security advisories and updates.


News URL

http://feedproxy.google.com/~r/HelpNetSecurity/~3/kGOh5LThnZ4/

Related vendor

VENDOR LAST 12M #/PRODUCTS LOW MEDIUM HIGH CRITICAL TOTAL VULNS
Connectwise 8 0 10 10 6 26