Security Advisory

CVE-2021-32582

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-06-17 11:36:47

Last updated 2024-08-03 23:25:30

Assigner mitre

State PUBLISHED

Description

An issue was discovered in ConnectWise Automate before 2021.5. A blind SQL injection vulnerability exists in core agent inventory communication that can enable an attacker to extract database information or administrative credentials from an instance via crafted monitor status responses.

← Browse all CVEs View on cve.org ↗