# CVE-2024-1709

> ConnectWise ScreenConnect 23.9.7 and prior are affected by an Authentication Bypass Using an Alternate Path or Channel vulnerability, which may allow an attacker direct access to confidential information or critical systems.

- **CVSS:** 10 (CRITICAL)
- **EPSS:** 94.3%
- **CISA KEV:** yes (known ransomware use)
- **CWE:** CWE-288, NVD-CWE-Other

Canonical: https://intel.threadlinqs.com/cve/CVE-2024-1709
Full threat coverage + IOCs via the Threadlinqs MCP server (Purple tier): https://intel.threadlinqs.com/mcp