CVE-2020-15838

The Agent Update System in ConnectWise Automate before 2020.8 allows Privilege Escalation because the _LTUPDATE folder has weak permissions.

Date published : 2020-10-09

https://www.connectwise.com/company/trust/security-bulletins

https://dbeta.com/2020/10/05/PrivilegeEscalationInAutomateAgent