Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
remote vulnerabilities and exploits
(subscribe to this query)
7
CVSSv3
CVE-2022-3182
Improper Access Control vulnerability in the Duo SMS two-factor of Devolutions Remote Desktop Manager 2022.2.14 and previous versions allows malicious users to bypass the application lock. This issue affects: Devolutions Remote Desktop Manager version 2022.2.14 and prior versions...
Devolutions Remote Desktop Manager
8.8
CVSSv3
CVE-2022-3641
Elevation of privilege in the Azure SQL Data Source in Devolutions Remote Desktop Manager 2022.3.13 to 2022.3.24 allows an authenticated user to spoof a privileged account.
Devolutions Remote Desktop Manager
5.3
CVSSv3
CVE-2023-32346
Teltonika’s Remote Management System versions before 4.10.0 contain a function that allows users to claim their devices. This function returns information based on whether the serial number of a device has already been claimed, the MAC address of a device has already been ...
Teltonika Remote Management System
9.8
CVSSv3
CVE-2023-32347
Teltonika’s Remote Management System versions before 4.10.0 use device serial numbers and MAC addresses to identify devices from the user perspective for device claiming and from the device perspective for authentication. If an attacker obtained the serial number and MAC a...
Teltonika Remote Management System
5.8
CVSSv3
CVE-2023-32348
Teltonika’s Remote Management System versions before 4.10.0 contain a virtual private network (VPN) hub feature for cross-device communication that uses OpenVPN. It connects new devices in a manner that allows the new device to communicate with all Teltonika devices connec...
Teltonika Remote Management System
6.5
CVSSv3
CVE-2023-1202
Permission bypass when importing or synchronizing entries in User vault in Devolutions Remote Desktop Manager 2023.1.9 and prior versions allows users with restricted rights to bypass entry permission via id collision.
Devolutions Remote Desktop Manager
6.5
CVSSv3
CVE-2023-1203
Improper removal of sensitive data in the entry edit feature of Hub Business submodule in Devolutions Remote Desktop Manager PowerShell Module 2022.3.1.5 and previous versions allows an authenticated user to access sensitive data on entries that were edited using the affected sub...
Devolutions Remote Desktop Manager
9.8
CVSSv3
CVE-2023-4373
Inadequate validation of permissions when employing remote tools and macros within Devolutions Remote Desktop Manager versions 2023.2.19 and previous versions permits a user to initiate a connection without proper execution rights via the remote tools feature.
Devolutions Remote Desktop Manager
7.5
CVSSv3
CVE-2022-44608
Uncontrolled resource consumption vulnerability in Cybozu Remote Service 4.0.0 to 4.0.3 allows a remote authenticated malicious user to consume huge storage space, which may result in a denial-of-service (DoS) condition.
Cybozu Cybozu Remote Service
7.5
CVSSv3
CVE-2022-3780
Database connections on deleted users could stay active on MySQL data sources in Remote Desktop Manager 2022.3.7 and below which allow deleted users to access unauthorized data. This issue affects : Remote Desktop Manager 2022.3.7 and prior versions.
Devolutions Remote Desktop Manager
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
6
7
8
9
10
NEXT »