Advisory 54

Advisory 54: Vulnerability for Fortinet FortiOS Out-of-Bound Write Vulnerability.

Release Date: 23rd of February 2024


TLP Rating: Clear

CERT Vanuatu (CERTVU) and the Office of the Chief Information Officer (OGCIO) provide the following advisory.

What is it?

ConnectWise ScreenConnect 23.9.7 and prior are affected by an Authentication Bypass using an Alternate Path or Channel vulnerability. Authentication Bypass using an alternative path sim means a product requires authentication, but with the vulnerability affecting the system, it now has an alternative path or the authentication is bypassed.