Connectwise: >> Automate >> 2019.12 Security Vulnerabilities
An XXE vulnerability exists in ConnectWise Automate before 2021.0.6.132.
CVSS Score
9.8
EPSS Score
0.004
Published
2021-06-21
The Agent Update System in ConnectWise Automate before 2020.8 allows Privilege Escalation because the _LTUPDATE folder has weak permissions.
CVSS Score
8.8
EPSS Score
0.002
Published
2020-10-09