Description of Event or Problem · 0
CYBERSECURITY VULNERABILITY FOUND BY CONNECTWISE SOFTWARE USED IN VIEWRAY MRIDIAN A3I SOFTWARE VERSION 3.0.X OVERVIEW THE PROVIDENCE CYBERSECURITY VULNERABILITY MANAGEMENT TEAM HAS DETERMINED THE CRITICAL RISK VULNERABILITIES ON CONNECTWISE SCREENCONNECT. THE FIRST FLAW INVOLVES A NEW CHECK REVEALING THAT THE AUTHENTICATION PROCESS WAS VULNERABLE VIA ALL ACCESS PATHS, INCLUDING THE SETUP WIZARD, ALLOWING UNAUTHORIZED CREATION OF NEW ADMINISTRATOR ACCOUNTS IN SCREENCONNECT. THE SECOND FLAW, A PATH TRAVERSAL BUG, ENABLED ACCESS OR MODIFICATION OF FILES OUTSIDE RESTRICTED DIRECTORIES. AN ADVISORY WAS RELEASED BY CONNECTWISE SCREENCONNECT. ASSOCIATED CVES: CVE-2024-1708 CVE-2024-1709 AFFECTED VERSIONS/ASSETS: ALL THE ASSETS WHICH ARE HAVING SCREENCONNECT VERSIONS 23.9.7 AND PRIOR. CAN RAPID7 DETECT THIS VULNERABILITY? YES. WHAT YOU NEED TO DO: USERS ARE RECOMMENDED TO UPGRADE TO LATEST VERSION OF SCREENCONNECT 23.9.8.