ConnectWise security patch release for CVE-2026-3564
Security Patch Release
Summary
Hide ▲
Show ▼
ConnectWise released ScreenConnect 26.1 to harden machine key handling after disclosing CVE-2026-3564, a flaw that can enable unauthorized access and privilege escalation. The update covers ScreenConnect versions before 26.1 and adds encrypted storage plus improved handling for machine keys. Cloud customers were moved to the safe version automatically, while on-premises administrators were told to upgrade as soon as possible. ConnectWise also said it has no evidence of active exploitation in its hosted service, even though attempts to abuse disclosed machine key material were observed in the wild.
Cases
Related Happenings
AWS exposed-key hardening guidance for Amazon SES phishing abuse
Defensive Guidance
First: 04.05.2026 23:03
Last: 04.05.2026 23:03
Sources 1
About this happening:
**Kaspersky** urged organizations to harden **AWS IAM** and credential handling after **exposed access keys** were linked to phishing delivery through **Amazon SES**, reducing the...
AWS exposed-key hardening guidance for Amazon SES phishing abuse
Defensive GuidanceAbout this happening: **Kaspersky** urged organizations to harden **AWS IAM** and credential handling after **exposed access keys** were linked to phishing delivery through **Amazon SES**, reducing the...
Apple Background Security Improvements WebKit patch (CVE-2026-20643)
Security Patch Release
First: 18.03.2026 03:06
Last: 18.03.2026 03:06
Sources 1
About this happening:
Apple's **first Background Security Improvements** release patches **CVE-2026-20643** in **WebKit**, letting **iPhones, iPads, and Macs** get a security fix **without a full OS up...
Apple Background Security Improvements WebKit patch (CVE-2026-20643)
Security Patch ReleaseAbout this happening: Apple's **first Background Security Improvements** release patches **CVE-2026-20643** in **WebKit**, letting **iPhones, iPads, and Macs** get a security fix **without a full OS up...
Hewlett Packard Enterprise (HPE) security patch release for CVE-2026-23813
Security Patch Release
First: 10.03.2026 19:30
Last: 10.03.2026 19:30
Sources 1
About this happening:
**HPE** released **security updates** for **Aruba Networking AOS-CX**, closing **multiple vulnerabilities** including authentication and code execution issues on **CX-series campu...
Hewlett Packard Enterprise (HPE) security patch release for CVE-2026-23813
Security Patch ReleaseAbout this happening: **HPE** released **security updates** for **Aruba Networking AOS-CX**, closing **multiple vulnerabilities** including authentication and code execution issues on **CX-series campu...
Cisco Secure Firewall Management Center patch release (CVE-2026-20079, CVE-2026-20131)
Security Patch Release
First: 04.03.2026 21:12
Last: 04.03.2026 21:12
Sources 1
About this happening:
**Cisco Secure Firewall Management Center (FMC)** patch release for **CVE-2026-20131** and **CVE-2026-20079** addressed **CVSS 10** flaws that could let an **unauthenticated remot...
Cisco Secure Firewall Management Center patch release (CVE-2026-20079, CVE-2026-20131)
Security Patch ReleaseAbout this happening: **Cisco Secure Firewall Management Center (FMC)** patch release for **CVE-2026-20131** and **CVE-2026-20079** addressed **CVSS 10** flaws that could let an **unauthenticated remot...
Latest development: 20.03.2026 17:09
CISA ordered Federal Civilian Executive Branch (FCEB) agencies to apply security updates for CVE-2026-20131 in Cisco Secure Firewall Management Center (FMC) by Sunday, March 22 after Cisco updated its bulletin on March 18 to warn of active exploitation in the wild. Amazon threat intelligence researchers said Interlock ransomware had been exploiting CVE-2026-20131 as a zero-day since the end of January, and Cisco said the web-based management interface could let an unauthenticated, remote attacker execute arbitrary Java code as root on an affected device.
Trend Micro security patch release for CVE-2025-71210
Security Patch Release
First: 26.02.2026 19:58
Last: 26.02.2026 19:58
Sources 1
About this happening:
**Trend Micro** released **Critical Patch Build 14136** for **Apex One**, closing **two critical vulnerabilities** that could allow **remote code execution** on vulnerable Windows...
Trend Micro security patch release for CVE-2025-71210
Security Patch ReleaseAbout this happening: **Trend Micro** released **Critical Patch Build 14136** for **Apex One**, closing **two critical vulnerabilities** that could allow **remote code execution** on vulnerable Windows...
Timeline
-
18.03.2026 20:10 1 articles · 2mo ago
ConnectWise warns of ScreenConnect CVE-2026-3564
Initial DisclosureConnectWise warns ScreenConnect customers about CVE-2026-3564, a critical cryptographic signature verification flaw affecting ScreenConnect versions before 26.1 that could let an attacker abuse ASP.NET machine keys for unauthorized session authentication, leading to unauthorized access and privilege escalation.
Show sources
- ConnectWise patches new flaw allowing ScreenConnect hijacking — www.bleepingcomputer.com — 18.03.2026 20:10
-
18.03.2026 20:10 2 articles · 2mo ago
ScreenConnect 26.1 hardens machine-key handling
Mitigation Patch UpdateConnectWise says ScreenConnect 26.1 strengthens machine-key protection with encrypted storage and improved handling, with cloud users moved to the safe version automatically and on-premises administrators told to upgrade as soon as possible.
Show sources
- ConnectWise patches new flaw allowing ScreenConnect hijacking — www.bleepingcomputer.com — 18.03.2026 20:10
- ConnectWise patches new flaw allowing ScreenConnect hijacking — www.bleepingcomputer.com — 18.03.2026 20:10