Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
devolutions remote desktop manager vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv3
CVE-2022-2221
Information Exposure vulnerability in My Account Settings of Devolutions Remote Desktop Manager prior to 2022.1.8 allows authenticated users to access credentials of other users. This issue affects: Devolutions Remote Desktop Manager versions prior to 2022.1.8.
Devolutions Remote Desktop Manager
4.6
CVSSv3
CVE-2022-1342
A lack of password masking in Devolutions Remote Desktop Manager allows physically proximate malicious users to observe sensitive data. A caching issue can cause sensitive fields to sometimes stay revealed when closing and reopening a panel, which could lead to involuntarily disc...
Devolutions Remote Desktop Manager
7.5
CVSSv3
CVE-2022-26964
Weak password derivation for export in Devolutions Remote Desktop Manager prior to 2022.1 allows information disclosure via a password brute-force attack. An error caused base64 to be decoded.
Devolutions Remote Desktop Manager
5.4
CVSSv3
CVE-2021-23922
An issue exists in Devolutions Remote Desktop Manager prior to 2020.2.12. There is a cross-site scripting (XSS) vulnerability in webviews.
Devolutions Remote Desktop Manager
9.8
CVSSv3
CVE-2023-4373
Inadequate validation of permissions when employing remote tools and macros within Devolutions Remote Desktop Manager versions 2023.2.19 and previous versions permits a user to initiate a connection without proper execution rights via the remote tools feature.
Devolutions Remote Desktop Manager
7.5
CVSSv3
CVE-2022-3780
Database connections on deleted users could stay active on MySQL data sources in Remote Desktop Manager 2022.3.7 and below which allow deleted users to access unauthorized data. This issue affects : Remote Desktop Manager 2022.3.7 and prior versions.
Devolutions Remote Desktop Manager
7.5
CVSSv3
CVE-2022-33995
A path traversal issue in entry attachments in Devolutions Remote Desktop Manager prior to 2022.2 allows malicious users to create or overwrite files in an arbitrary location.
Devolutions Remote Desktop Manager
8.8
CVSSv3
CVE-2021-42098
An incomplete permission check on entries in Devolutions Remote Desktop Manager prior to 2021.2.16 allows malicious users to bypass permissions via batch custom PowerShell.
Devolutions Remote Desktop Manager
6.5
CVSSv3
CVE-2023-1574
Information disclosure in the user creation feature of a MSSQL data source in Devolutions Remote Desktop Manager 2023.1.9 and below on Windows allows an attacker with access to the user interface to obtain sensitive information via the error message dialog that displays the passw...
Devolutions Remote Desktop Manager
7.8
CVSSv3
CVE-2023-6288
Code injection in Remote Desktop Manager 2023.3.9.3 and previous versions on macOS allows an malicious user to execute code via the DYLIB_INSERT_LIBRARIES environment variable.
Devolutions Remote Desktop Manager
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
malicious code
camera
CVE-2023-46694
CVE-2023-43847
CVE-2023-30311
CVE-2024-27842
CVE-2024-30165
arbitrary code
CVE-2024-21683
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »