Connectwise Manage — known CVE vulnerabilities
Every CVE whose affected-product data names Connectwise Manage, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
- CVE-2017-11726 — CVSS 8.8 (high): services/system_io/actionprocessor/System.rails in ConnectWise Manage 2017.5 is vulnerable to Cross-Site Request Forgery (CSRF), as…
- CVE-2017-11727 — CVSS 6.1 (medium): services/system_io/actionprocessor/Contact.rails in ConnectWise Manage 2017.5 allows arbitrary client-side JavaScript code execution…