415/68 Tuesday, October 21, 2025
ConnectWise has rolled out the Automate 2025.9 security update to fix two critical vulnerabilities in its Automate Remote Monitoring and Management (RMM) software that could allow attackers to carry out Man-in-the-Middle (MiTM) attacks by intercepting and manipulating communications between agents and servers.
The first flaw, CVE-2025-11492 (CVSS 9.6, Critical), stems from the transmission of sensitive data in cleartext without encryption, enabling attackers with network access to eavesdrop on communications. The second flaw, CVE-2025-11493 (CVSS 8.8, High), is caused by the lack of integrity checks during the code download process, making it possible for an attacker to tamper with or replace update files with malicious code.
ConnectWise stated that the new patch enforces HTTPS for all agent communications, reducing the risk of data interception. The company also advised on-premise server users to ensure that TLS 1.2 is enforced for additional connection security. Given the severity of these vulnerabilities and the potential exposure of sensitive data if exploited, ConnectWise strongly recommends that all organizations update to the latest patch immediately to mitigate risk.
Source https://www.securityweek.com/connectwise-patches-critical-flaw-in-automate-rmm-tool/
