CVE-2019-16516

MEDIUM

ConnectWise Control <19.3.25270.7185 - Info Disclosure

Title source: llm

Exploitation Summary

EIP tracks 2 public exploits for CVE-2019-16516. PoCs published by Luca Cuzzolin, czz.

AI-analyzed exploit summary This exploit performs username enumeration against ConnectWise Control by sending POST requests with a wordlist of usernames and checking for a specific response string ('PasswordInvalid') to determine valid users. It uses multiprocessing to parallelize the enumeration process.

Description

An issue was discovered in ConnectWise Control (formerly known as ScreenConnect) 19.3.25270.7185. There is a user enumeration vulnerability, allowing an unauthenticated attacker to determine with certainty if an account exists for a given username.

Exploits (2)

exploitdb WORKING POC

by Luca Cuzzolin · pythonremotemultiple

https://www.exploit-db.com/exploits/50618

View Code ZIP pw:eip

This exploit performs username enumeration against ConnectWise Control by sending POST requests with a wordlist of usernames and checking for a specific response string ('PasswordInvalid') to determine valid users. It uses multiprocessing to parallelize the enumeration process.

Classification

Working Poc 95%

Attack Type

Info Leak

Complexity

Moderate

Reliability

Reliable

Target: ConnectWise Control <= 19.2.24707

No auth needed

Prerequisites: Network access to the target application · A wordlist of potential usernames

MITRE ATT&CK

T1589 - Gather Victim Identity Information

devstral-2 · analyzed Feb 16, 2026 Full analysis →

nomisec SCANNER

by czz · poc

https://github.com/czz/ScreenConnect-UserEnum

View Code ZIP pw:eip

This repository contains a Python script that performs user enumeration against ConnectWise Control (ScreenConnect) by exploiting CVE-2019-16516. The tool sends crafted POST requests to the login endpoint and checks for a specific response pattern ('PasswordInvalid') to determine if a username exists.

Classification

Scanner 95%

Attack Type

Info Leak

Complexity

Trivial

Reliability

Reliable

Target: ConnectWise Control (ScreenConnect) <= 19.2.24707

No auth needed

Prerequisites: Network access to the target ScreenConnect login page · A wordlist of potential usernames

MITRE ATT&CK

T1589.001 - Credentials

devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (6)

Core 6

Core References

Third Party Advisory x_refsource_misc

https://know.bishopfox.com/advisories

Exploit, Third Party Advisory x_refsource_misc

https://know.bishopfox.com/advisories/connectwise-control

Exploit, Third Party Advisory x_refsource_misc

https://blog.huntresslabs.com/validating-the-bishop-fox-findings-in-connectwise-control-9155eec36a34

Third Party Advisory x_refsource_misc

https://www.crn.com/news/managed-services/connectwise-control-msp-security-vulnerabilities-are-severe-bishop-fox

Third Party Advisory x_refsource_misc

https://www.crn.com/slide-shows/managed-services/connectwise-control-attack-chain-exploit-20-questions-for-security-researcher-bishop-fox

Exploit, Third Party Advisory, VDB Entry x_refsource_misc

http://packetstormsecurity.com/files/165432/ConnectWise-Control-19.2.24707-Username-Enumeration.html

Scores

CVSS v3 5.3

EPSS 0.1910

EPSS Percentile 97.0%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Details

CWE

CWE-203

Status published

Products (2)

connectwise/control 19.3.25270.7185

connectwise/control < 19.2.24707

Published Jan 23, 2020

Tracked Since Feb 18, 2026