Exploit:Python/CVE-2024-1709.A!dha threat description -
Microsoft Security Intelligence
By Microsoft Corporation
Archived: 2026-04-05 17:40:24 UTC
Published Feb 21, 2024 | Updated Mar 10, 2025
Summary
CVE-2024-1709 is an authentication bypass using an alternate path or channel vulnerability in ConnectWise
ScreenConnect version 23.9.7 and prior. Microsoft has observed the exploitation of these vulnerabilities leading to
ransomware activity. While the activity has been observed as enacted by the threat actor Microsoft tracks as
Storm-0506, other threat actors might also begin using this vulnerability.
Source: https://www.microsoft.com/en-us/wdsi/threats/malware-encyclopedia-description?Name=Exploit:Python/CVE-2024-1709.A!dha&Thr
eatID=2147903327
https://www.microsoft.com/en-us/wdsi/threats/malware-encyclopedia-description?Name=Exploit:Python/CVE-2024-1709.A!dha&ThreatID=2147903327
Page 1 of 1