CVE-2026-3564 - Vulnerability Details - OpenCVE

A condition in ScreenConnect may allow an actor with access to server-level cryptographic material used for authentication to obtain unauthorized access, including elevated privileges, in certain scenarios.

No CVSS v4.0

Attack Vector Network

Attack Complexity High

Privileges Required None

Scope Changed

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

No EPSS score available.

Exploitation none

Automatable no

Technical Impact total

No data.

No data.

No data.

No data.

References

Link	Providers
https://www.connectwise.com/company/trust/security-bulletins/2026-03-17-screenconnect-bulletin

History

Tue, 17 Mar 2026 16:15:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}`

Tue, 17 Mar 2026 15:15:00 +0000

Type	Values Removed	Values Added
Description		A condition in ScreenConnect may allow an actor with access to server-level cryptographic material used for authentication to obtain unauthorized access, including elevated privileges, in certain scenarios.
Title		ScreenConnect Instance Level Cryptographic Material Exposure
Weaknesses		CWE-347
References		https://www.connectwise.com/company/trust/security-bulletins/2026-03-17-screenconnect-bulletin
Metrics		cvssV3_1 `{'score': 9, 'vector': 'CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H'}`

MITRE

Status: PUBLISHED

Assigner: ConnectWise

Published: 2026-03-17T14:48:59.940Z

Updated: 2026-03-17T15:24:48.838Z

Reserved: 2026-03-04T20:04:12.757Z

Link: CVE-2026-3564

Vulnrichment

Updated: 2026-03-17T15:24:45.359Z

NVD

Status : Received

Published: 2026-03-17T15:16:19.253

Modified: 2026-03-17T15:16:19.253

Link: CVE-2026-3564

Redhat

No data.

OpenCVE Enrichment

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-3564", "assignerOrgId": "7d616e1a-3288-43b1-a0dd-0a65d3e70a49", "state": "PUBLISHED", "assignerShortName": "ConnectWise", "dateReserved": "2026-03-04T20:04:12.757Z", "datePublished": "2026-03-17T14:48:59.940Z", "dateUpdated": "2026-03-17T15:24:48.838Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "7d616e1a-3288-43b1-a0dd-0a65d3e70a49", "shortName": "ConnectWise", "dateUpdated": "2026-03-17T14:48:59.940Z"}, "title": "ScreenConnect Instance Level Cryptographic Material Exposure", "problemTypes": [{"descriptions": [{"lang": "en", "cweId": "CWE-347", "description": "CWE-347 Improper Verification of Cryptographic Signature", "type": "CWE"}]}], "affected": [{"vendor": "ConnectWise", "product": "ScreenConnect", "versions": [{"status": "affected", "version": "All versions prior to 26.1"}], "defaultStatus": "unaffected"}], "descriptions": [{"lang": "en", "value": "A condition in ScreenConnect may allow an actor with access to server-level cryptographic material used for authentication to obtain unauthorized access, including elevated privileges, in certain scenarios.", "supportingMedia": [{"type": "text/html", "base64": false, "value": "A condition in ScreenConnect may allow an actor with access to server-level cryptographic material used for authentication to obtain unauthorized access, including elevated privileges, in certain scenarios.<br><div>\n\n\n\n\n\n<div>\n\n<div><a></a>\n\n<p><br></p>\n\n</div>\n\n</div>\n\n</div>"}]}], "references": [{"url": "https://www.connectwise.com/company/trust/security-bulletins/2026-03-17-screenconnect-bulletin"}], "metrics": [{"format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}], "cvssV3_1": {"version": "3.1", "attackVector": "NETWORK", "attackComplexity": "HIGH", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "CHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH", "baseSeverity": "CRITICAL", "baseScore": 9, "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H"}}], "solutions": [{"lang": "en", "value": "Cloud:\u00a0No action is required. ScreenConnect servers hosted in\n\u201cscreenconnect.com\u201d cloud (standalone and Automate/RMM integrated) or\n\u201chostedrmm.com\u201d for Automate partners have been updated to remediate the\nissue.\u202f\u00a0\n\n\n\nOn-premise\u00a0ScreenConnect Partners:\n\n\n\n\n\nPlease upgrade to ScreenConnect version 26.1. Visit Download\n| ScreenConnect page to download and apply the update (access\nrequires a valid on-premises license).\u00a0\n\n\n\n\n\n\n\n * If your license is out of maintenance, you must upgrade your license https://docs.connectwise.com/ScreenConnect_Documentation/On-premises/On-premises_licensing/Renew_or_upgrade_an_on-premises_license \u00a0before installing\nthe latest supported release of ScreenConnect. \n * For\ninstructions on updating to the newest release, please reference this\ndoc: Upgrade an on-premise\ninstallation - ConnectWise\u00a0\n\n\n\n\n\n\n\n\n\n\n\n\nAutomate On-Prem Partners with ScreenConnect\nIntegration:\n\n\n\nFor partners using an on-premises ScreenConnect\ninstallation integrated with Automate, ScreenConnect 26.1 is available through\nthe Automate Product Updates https://docs.connectwise.com/ConnectWise_Automate_Documentation/Automate_Product_Updates page.\n\n\n\n\n\n\nLink to release\nnotes: ScreenConnect 26.1 / ScreenConnect https://screenconnect.product.connectwise.com/communities/26/topics/5088-screenconnect-261", "supportingMedia": [{"type": "text/html", "base64": false, "value": "<p><br></p>\n\n<p><b>Cloud: </b>No action is required. ScreenConnect servers hosted in\n\u201cscreenconnect.com\u201d cloud (standalone and Automate/RMM integrated) or\n\u201chostedrmm.com\u201d for Automate partners have been updated to remediate the\nissue.\u202f </p>\n\n<p><b>On-premise</b> <b>ScreenConnect</b> <b>Partners:</b></p>\n\n\n\n<p>Please upgrade to ScreenConnect version 26.1. Visit <a target=\"_blank\" rel=\"nofollow\" href=\"https://www.screenconnect.com/download\">Download\n| ScreenConnect</a> page to download and apply the update <i>(access\nrequires a valid on-premises license)</i>. </p>\n\n\n\n<p></p><ul><li>If your license is out of maintenance, you must <a target=\"_blank\" rel=\"nofollow\" href=\"https://docs.connectwise.com/ScreenConnect_Documentation/On-premises/On-premises_licensing/Renew_or_upgrade_an_on-premises_license\">upgrade your license</a> before installing\nthe latest supported release of ScreenConnect. </li><li>For\ninstructions on updating to the newest release, please reference this\ndoc: <a target=\"_blank\" rel=\"nofollow\" href=\"https://docs.connectwise.com/ConnectWise_ScreenConnect_Documentation/On-premises/Get_started_with_ConnectWise_ScreenConnect_On-Premise/Upgrade_an_on-premises_installation\">Upgrade an on-premise\ninstallation - ConnectWise</a> </li></ul><p></p>\n\n\n\n\n\n\n\n<p><b>Automate On-Prem Partners with ScreenConnect\nIntegration</b>:</p>\n\n<p>For partners using an on-premises ScreenConnect\ninstallation integrated with Automate, ScreenConnect 26.1 is available through\nthe <a href=\"https://docs.connectwise.com/ConnectWise_Automate_Documentation/Automate_Product_Updates\">Automate Product Updates</a> page.</p><p><br></p>\n\n<p>Link to release\nnotes: <a href=\"https://screenconnect.product.connectwise.com/communities/26/topics/5088-screenconnect-261\">ScreenConnect 26.1 / ScreenConnect</a></p>"}]}], "source": {"discovery": "UNKNOWN"}, "x_generator": {"engine": "Vulnogram 0.5.0"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-03-17T15:24:40.438030Z", "id": "CVE-2026-3564", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-17T15:24:48.838Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2026-3564", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2026-03-17T15:24:40.438030Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-17T15:24:45.359Z"}}], "cna": {"title": "ScreenConnect Instance Level Cryptographic Material Exposure", "source": {"discovery": "UNKNOWN"}, "metrics": [{"format": "CVSS", "cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 9, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "HIGH", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"vendor": "ConnectWise", "product": "ScreenConnect", "versions": [{"status": "affected", "version": "All versions prior to 26.1"}], "defaultStatus": "unaffected"}], "solutions": [{"lang": "en", "value": "Cloud:\u00a0No action is required. ScreenConnect servers hosted in\n\u201cscreenconnect.com\u201d cloud (standalone and Automate/RMM integrated) or\n\u201chostedrmm.com\u201d for Automate partners have been updated to remediate the\nissue.\u202f\u00a0\n\n\n\nOn-premise\u00a0ScreenConnect Partners:\n\n\n\n\n\nPlease upgrade to ScreenConnect version 26.1. Visit Download\n| ScreenConnect page to download and apply the update (access\nrequires a valid on-premises license).\u00a0\n\n\n\n\n\n\n\n * If your license is out of maintenance, you must upgrade your license https://docs.connectwise.com/ScreenConnect_Documentation/On-premises/On-premises_licensing/Renew_or_upgrade_an_on-premises_license \u00a0before installing\nthe latest supported release of ScreenConnect. \n * For\ninstructions on updating to the newest release, please reference this\ndoc: Upgrade an on-premise\ninstallation - ConnectWise\u00a0\n\n\n\n\n\n\n\n\n\n\n\n\nAutomate On-Prem Partners with ScreenConnect\nIntegration:\n\n\n\nFor partners using an on-premises ScreenConnect\ninstallation integrated with Automate, ScreenConnect 26.1 is available through\nthe Automate Product Updates https://docs.connectwise.com/ConnectWise_Automate_Documentation/Automate_Product_Updates page.\n\n\n\n\n\n\nLink to release\nnotes: ScreenConnect 26.1 / ScreenConnect https://screenconnect.product.connectwise.com/communities/26/topics/5088-screenconnect-261", "supportingMedia": [{"type": "text/html", "value": "<p><br></p>\n\n<p><b>Cloud: </b>No action is required. ScreenConnect servers hosted in\n\u201cscreenconnect.com\u201d cloud (standalone and Automate/RMM integrated) or\n\u201chostedrmm.com\u201d for Automate partners have been updated to remediate the\nissue.\u202f </p>\n\n<p><b>On-premise</b> <b>ScreenConnect</b> <b>Partners:</b></p>\n\n\n\n<p>Please upgrade to ScreenConnect version 26.1. Visit <a target=\"_blank\" rel=\"nofollow\" href=\"https://www.screenconnect.com/download\">Download\n| ScreenConnect</a> page to download and apply the update <i>(access\nrequires a valid on-premises license)</i>. </p>\n\n\n\n<p></p><ul><li>If your license is out of maintenance, you must <a target=\"_blank\" rel=\"nofollow\" href=\"https://docs.connectwise.com/ScreenConnect_Documentation/On-premises/On-premises_licensing/Renew_or_upgrade_an_on-premises_license\">upgrade your license</a> before installing\nthe latest supported release of ScreenConnect. </li><li>For\ninstructions on updating to the newest release, please reference this\ndoc: <a target=\"_blank\" rel=\"nofollow\" href=\"https://docs.connectwise.com/ConnectWise_ScreenConnect_Documentation/On-premises/Get_started_with_ConnectWise_ScreenConnect_On-Premise/Upgrade_an_on-premises_installation\">Upgrade an on-premise\ninstallation - ConnectWise</a> </li></ul><p></p>\n\n\n\n\n\n\n\n<p><b>Automate On-Prem Partners with ScreenConnect\nIntegration</b>:</p>\n\n<p>For partners using an on-premises ScreenConnect\ninstallation integrated with Automate, ScreenConnect 26.1 is available through\nthe <a href=\"https://docs.connectwise.com/ConnectWise_Automate_Documentation/Automate_Product_Updates\">Automate Product Updates</a> page.</p><p><br></p>\n\n<p>Link to release\nnotes: <a href=\"https://screenconnect.product.connectwise.com/communities/26/topics/5088-screenconnect-261\">ScreenConnect 26.1 / ScreenConnect</a></p>", "base64": false}]}], "references": [{"url": "https://www.connectwise.com/company/trust/security-bulletins/2026-03-17-screenconnect-bulletin"}], "x_generator": {"engine": "Vulnogram 0.5.0"}, "descriptions": [{"lang": "en", "value": "A condition in ScreenConnect may allow an actor with access to server-level cryptographic material used for authentication to obtain unauthorized access, including elevated privileges, in certain scenarios.", "supportingMedia": [{"type": "text/html", "value": "A condition in ScreenConnect may allow an actor with access to server-level cryptographic material used for authentication to obtain unauthorized access, including elevated privileges, in certain scenarios.<br><div>\n\n\n\n\n\n<div>\n\n<div><a></a>\n\n<p><br></p>\n\n</div>\n\n</div>\n\n</div>", "base64": false}]}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-347", "description": "CWE-347 Improper Verification of Cryptographic Signature"}]}], "providerMetadata": {"orgId": "7d616e1a-3288-43b1-a0dd-0a65d3e70a49", "shortName": "ConnectWise", "dateUpdated": "2026-03-17T14:48:59.940Z"}}}, "cveMetadata": {"cveId": "CVE-2026-3564", "state": "PUBLISHED", "dateUpdated": "2026-03-17T15:24:48.838Z", "dateReserved": "2026-03-04T20:04:12.757Z", "assignerOrgId": "7d616e1a-3288-43b1-a0dd-0a65d3e70a49", "datePublished": "2026-03-17T14:48:59.940Z", "assignerShortName": "ConnectWise"}, "dataVersion": "5.2"}