CNNVD-202510-2304 Information

CNNVD ID

CNNVD-202510-2304

Related CVE

CVE-2025-11493

• CNNVD Published: 2025-10-16

Description (Chinese)

ConnectWise Automate Agent是美国ConnectWise公司的一个远程监控与管理软件。 ConnectWise Automate Agent存在安全漏洞，该漏洞源于未完全验证从服务器下载文件的真实性，可能导致中间人攻击。

Description (English)

ConnectWise AutomateAgent is a remote surveillance and management software for ConnectWise in the United States. ConectWise Automate Agent has a security loophole, which stems from the incomplete verification of the authenticity of documents downloaded from servers and may lead to attacks by intermediaries.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

ConnectWise

Published

2025-10-16

Last Modified

2026-02-24

References

https://www.connectwise.com/company/trust/security-bulletins/connectwise-automate-2025.9-security-fix https://access.redhat.com/security/cve/cve-2025-11493

Patch

https://www.connectwise.com/company/trust/security-bulletins/connectwise-automate-2025.9-security-fix