ConnectWise Automate vulnerabilities patched

First reported

17.10.2025 22:29

Last updated

1 unique sources, 1 articles

Summary

Hide ▲

ConnectWise has released a security update for its Automate product to address two vulnerabilities. The most severe, CVE-2025-11492, allows for cleartext transmission of sensitive information, potentially exposing communications to adversary-in-the-middle (AiTM) attacks. The second, CVE-2025-11493, involves a lack of integrity verification for update packages. The vulnerabilities affect on-premises deployments of Automate, a remote monitoring and management (RMM) platform used by managed service providers (MSPs) and IT departments. The update is marked as a moderate priority, and administrators are advised to install it as soon as possible. These vulnerabilities could allow attackers to intercept or modify traffic, including commands, credentials, and update payloads, potentially leading to the installation of malicious files.

Timeline

17.10.2025 22:29 1 articles · 23h ago

ConnectWise Automate vulnerabilities patched
ConnectWise has released a security update for its Automate product to address two vulnerabilities. The most severe, CVE-2025-11492, allows for cleartext transmission of sensitive information, potentially exposing communications to adversary-in-the-middle (AiTM) attacks. The second, CVE-2025-11493, involves a lack of integrity verification for update packages. The vulnerabilities affect on-premises deployments of Automate, and administrators are advised to install the update as soon as possible. The update is marked as a moderate priority, and there is no mention of active exploitation, but the vulnerabilities pose a higher risk of being targeted.
Show sources

ConnectWise fixes Automate bug allowing AiTM update attacks — www.bleepingcomputer.com — 17.10.2025 22:29
Open in new tab

Information Snippets

ConnectWise Automate is an RMM platform used by MSPs and IT departments.
First reported: 17.10.2025 22:29

1 source, 1 article
Show sources
- ConnectWise fixes Automate bug allowing AiTM update attacks — www.bleepingcomputer.com — 17.10.2025 22:29
CVE-2025-11492 allows cleartext transmission of sensitive information, enabling AiTM attacks.
First reported: 17.10.2025 22:29

1 source, 1 article
Show sources
- ConnectWise fixes Automate bug allowing AiTM update attacks — www.bleepingcomputer.com — 17.10.2025 22:29
CVE-2025-11493 involves a lack of integrity verification for update packages.
First reported: 17.10.2025 22:29

1 source, 1 article
Show sources
- ConnectWise fixes Automate bug allowing AiTM update attacks — www.bleepingcomputer.com — 17.10.2025 22:29
The vulnerabilities affect on-premises deployments of Automate.
First reported: 17.10.2025 22:29

1 source, 1 article
Show sources
- ConnectWise fixes Automate bug allowing AiTM update attacks — www.bleepingcomputer.com — 17.10.2025 22:29
The update is marked as a moderate priority and should be installed as soon as possible.
First reported: 17.10.2025 22:29

1 source, 1 article
Show sources
- ConnectWise fixes Automate bug allowing AiTM update attacks — www.bleepingcomputer.com — 17.10.2025 22:29
The vulnerabilities could allow attackers to intercept or modify traffic, including commands, credentials, and update payloads.
First reported: 17.10.2025 22:29

1 source, 1 article
Show sources
- ConnectWise fixes Automate bug allowing AiTM update attacks — www.bleepingcomputer.com — 17.10.2025 22:29
Cloud-based instances of Automate have already been updated to the latest release, 2025.9.
First reported: 17.10.2025 22:29

1 source, 1 article
Show sources
- ConnectWise fixes Automate bug allowing AiTM update attacks — www.bleepingcomputer.com — 17.10.2025 22:29
There is no mention of active exploitation, but the vulnerabilities pose a higher risk of being targeted.
First reported: 17.10.2025 22:29

1 source, 1 article
Show sources
- ConnectWise fixes Automate bug allowing AiTM update attacks — www.bleepingcomputer.com — 17.10.2025 22:29