-
EDR / MDRIdentify, contain, respond, and stop malicious activity on endpoints
-
SIEMCentralize threat visibility and analysis, backed by cutting-edge threat intelligence
-
Risk Assessment & Vulnerability ManagementIdentify unknown cyber risks and routinely scan for vulnerabilities
-
Identity ManagementSecure and streamline client access to devices and applications with strong authentication and SSO
-
Cloud App SecurityMonitor and manage security risk for SaaS apps
-
SASEZero trust secure access for users, locations, and devices
-
SOC ServicesProvide 24/7 threat monitoring and response backed by ConnectWise SOC experts
-
Policy ManagementCreate, deploy, and manage client security policies and profiles
-
Incident Response ServiceOn-tap cyber experts to address critical security incidents
-
Cybersecurity GlossaryGuide to the most common, important terms in the industry
ConnectWise Automate 2023.5 Security Fix
05/11/2023
Vulnerability
CWE-214 Invocation of Process Using Visible Sensitive Information
Severity
Important—Vulnerabilities that could compromise confidential data or other processing resources but require additional access / privilege to do so.
Priority
2—Vulnerabilities that have elevated risk, but exploits are neither known nor anticipated to be imminent. Recommend updates be prioritized against normal change management timelines but no longer than 30 days.
Affected versions
ConnectWise Automate versions 2023.4 and earlier are impacted.
Remediation
CLOUD:
Cloud instances have already been updated to the latest Automate release and no action is required.
ON-PREMISE:
As best practice we encourage partners to follow the documentation for resetting your MySQL password.
Additional information