Man-in-the-Middle Vulnerability in ConnectWise Automate Agent
CVE-2025-11492

9.6CRITICAL

Key Information:

Vendor: Connectwise
Status: Automate
Vendor: CVE Published:; 16 October 2025

🔔 Create Connectwise Vulnerability Alert

What is CVE-2025-11492?

The ConnectWise Automate Agent is susceptible to a vulnerability where communications can be configured to use unsecure HTTP instead of secure HTTPS. This flaw could be exploited by an attacker positioned within the network to intercept, modify, or replay sensitive agent-server communications. It is crucial for users to update to the Automate 2025.9 patch, which mandates the use of HTTPS for all agent communications, thereby enhancing security and protecting against potential exploitation.

Affected Version(s)

Automate All versions prior to 2025.9

References

https://www.connectwise.com/company/trust/security-bullet...

CVSS V3.1

Score:

9.6

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Adjacent Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 16, 2025
Vulnerability Reserved
Oct 8, 2025

JSON