CVE-2019-16513

HIGH

ConnectWise Control <19.3.25270.7185 - CSRF

Title source: llm
STIX 2.1

Description

An issue was discovered in ConnectWise Control (formerly known as ScreenConnect) 19.3.25270.7185. CSRF can be used to send API requests.

Scores

CVSS v3 8.8
EPSS 0.0101
EPSS Percentile 58.9%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Details

CWE
CWE-352
Status published
Products (1)
connectwise/control 19.3.25270.7185
Published Jan 23, 2020
Tracked Since Feb 18, 2026