CVE-2025-3935 - ConnectWise ScreenConnect Improper Authentication Vulnerability

Vulnerability Name

ConnectWise ScreenConnect Improper Authentication Vulnerability

Description

ConnectWise ScreenConnect contains an improper authentication vulnerability. This vulnerability could allow a ViewState code injection attack, which could allow remote code execution if machine keys are compromised.

Known To Be Used in Ransomware Campaigns?

Unknown

Action

Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.

Additional Notes

https://www.connectwise.com/company/trust/security-bulletins/screenconnect-security-patch-2025.4

https://nvd.nist.gov/vuln/detail/CVE-2025-3935

Related News Articles

CISA warns of ConnectWise ScreenConnect bug exploited in attacksJune 3, 2025