A Proof of Concept developed by @watchTowr to exploit an authentication bypass to add a new administrative user in ConnectWise ScreenConnect. This is the first step in a trivial Remote Command Execution chain.

• https://labs.watchtowr.com/
• https://twitter.com/watchtowrcyber
• https://www.bleepingcomputer.com/news/security/connectwise-urges-screenconnect-admins-to-patch-critical-rce-flaw/
• https://www.bleepingcomputer.com/news/security/screenconnect-critical-bug-now-under-attack-as-exploit-code-emerges/
• https://www.connectwise.com/company/trust/security-bulletins/connectwise-screenconnect-23.9.8
• Metasploit RCE module - rapid7/metasploit-framework#18870