ConnectWise Security Bulletin - New Customer Portal
06/22/2020
Vulnerability Details:
CVSS Score: 8.4
Description:
A remote user could abuse the account registration process to impersonate a legitimate user and act with their assigned privileges.
Remediation:
Connectwise has remediated the issue in all environments.
As an additional precaution, all ConnectWise SSO accounts will be required to re-validate their registered email addresses.