Patch Party: ConnectWise Fixes Critical Flaws in RMM Tool!

ConnectWise Automate just got a security boost with patches for two vulnerabilities. Hackers keen on MiTM attacks will be disappointed, as the update enforces HTTPS to keep snoopers at bay. So, if your network has been running on trust and optimism, it might be time for a software upgrade!

3P
Published: October 20, 2025 12:37 pmAdded: October 20, 2025 at 6:12 amAssembled by: The Editor
Pro Dashboard

Hot Take:

ConnectWise has decided to spice things up by giving hackers a chance to play the middleman in a high-stakes game of telephone! But fear not, they’ve also handed out patches faster than a grandma with a sewing kit. Just make sure your system’s updated, or you might find your data doing a disappearing act worthy of Houdini!

Key Points:

  • ConnectWise patches two vulnerabilities in Automate RMM tool.
  • CVE-2025-11492 allows interception of sensitive data; CVSS score 9.6.
  • CVE-2025-11493 lacks integrity checks, CVSS score 8.8.
  • Automate 2025.9 patch enforces HTTPS to prevent MiTM attacks.
  • Organizations advised to update installations promptly.

Membership Required

 You must be a member to access this content.

View Membership Levels
Already a member? Log in here
The Nimble Nerd
powered by the NSA, er,  GDPR Cookie Compliance
Confessional Booth of Our Digital Sins

Okay, deep breath, let's get this over with. In the grand act of digital self-sabotage, we've littered this site with cookies. Yep, we did that. Why? So your highness can have a 'premium' experience or whatever. These traitorous cookies hide in your browser, eagerly waiting to welcome you back like a guilty dog that's just chewed your favorite shoe. And, if that's not enough, they also tattle on which parts of our sad little corner of the web you obsess over. Feels dirty, doesn't it?