ConnectWise ScreenConnect Auth Bypass is on CISA KEV — confirmed in-the-wild exploitation. Expect continued targeting while the issue remains on the catalog.
Critical exposure
CVE-2023-51389Hertzbeat is a real-time monitoring system.
CVSS 9.8
New critical Apache Hertzbeat Deserialization (CVSS 9.8) — fresh disclosure window; early internet scanning often precedes mature exploit chains.
Critical exposure
CVE-2023-51653Hertzbeat is a real-time monitoring system.
CVSS 9.8
Remote code execution exposure
New critical Apache Hertzbeat RCE (CVSS 9.8) — fresh disclosure window; early internet scanning often precedes mature exploit chains.