cve/CVE-2019-16516.md at 9ac4b787af2fa0b7575b28040edee6199ce9a667

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-28 01:04:30 +00:00

0xMarcio 48a00929ac Removed duplicates

2024-06-18 02:51:15 +02:00

Description

An issue was discovered in ConnectWise Control (formerly known as ScreenConnect) 19.3.25270.7185. There is a user enumeration vulnerability, allowing an unauthenticated attacker to determine with certainty if an account exists for a given username.

POC

Reference

http://packetstormsecurity.com/files/165432/ConnectWise-Control-19.2.24707-Username-Enumeration.html
https://blog.huntresslabs.com/validating-the-bishop-fox-findings-in-connectwise-control-9155eec36a34
https://know.bishopfox.com/advisories
https://know.bishopfox.com/advisories/connectwise-control

Github

https://github.com/ARPSyndicate/cvemon
https://github.com/Enes4xd/Enes4xd
https://github.com/cr0ss2018/cr0ss2018
https://github.com/czz/ScreenConnect-UserEnum
https://github.com/ezelnur6327/Enes4xd
https://github.com/ezelnur6327/enesamaafkolan
https://github.com/ezelnur6327/ezelnur6327

1.2 KiB Raw Blame History

CVE-2019-16516

Description

POC

Reference

Github

1.2 KiB

Raw Blame History