Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
remote desktop manager vulnerabilities and exploits
(subscribe to this query)
3.3
CVSSv3
CVE-2023-0463
The force offline MFA prompt setting is not respected when switching to offline mode in Devolutions Remote Desktop Manager 2022.3.29 to 2022.3.30 allows a user to save sensitive data on disk.
Devolutions Remote Desktop Manager 2022.3.29
Devolutions Remote Desktop Manager 2022.3.30
6.5
CVSSv3
CVE-2023-1574
Information disclosure in the user creation feature of a MSSQL data source in Devolutions Remote Desktop Manager 2023.1.9 and below on Windows allows an attacker with access to the user interface to obtain sensitive information via the error message dialog that displays the passw...
Devolutions Remote Desktop Manager
4.6
CVSSv3
CVE-2022-1342
A lack of password masking in Devolutions Remote Desktop Manager allows physically proximate malicious users to observe sensitive data. A caching issue can cause sensitive fields to sometimes stay revealed when closing and reopening a panel, which could lead to involuntarily disc...
Devolutions Remote Desktop Manager
4.3
CVSSv3
CVE-2023-1939
No access control for the OTP key on OTP entries in Devolutions Remote Desktop Manager Windows 2022.3.33.0 and prior versions and Remote Desktop Manager Linux 2022.3.2.0 and prior versions allows non admin users to see OTP keys via the user interface.
Devolutions Remote Desktop Manager
9.8
CVSSv3
CVE-2023-6593
Client side permission bypass in Devolutions Remote Desktop Manager 2023.3.4.0 and previous versions on iOS allows an attacker that has access to the application to execute entries in a SQL data source without restriction.
Devolutions Remote Desktop Manager
7.5
CVSSv3
CVE-2022-26964
Weak password derivation for export in Devolutions Remote Desktop Manager prior to 2022.1 allows information disclosure via a password brute-force attack. An error caused base64 to be decoded.
Devolutions Remote Desktop Manager
5.4
CVSSv3
CVE-2021-23922
An issue exists in Devolutions Remote Desktop Manager prior to 2020.2.12. There is a cross-site scripting (XSS) vulnerability in webviews.
Devolutions Remote Desktop Manager
5.4
CVSSv3
CVE-2024-0589
Cross-site scripting (XSS) vulnerability in the entry overview tab in Devolutions Remote Desktop Manager 2023.3.36 and previous versions on Windows allows an attacker with access to a data source to inject a malicious script via a specially crafted input in an entry.
Devolutions Remote Desktop Manager
9.8
CVSSv3
CVE-2023-4373
Inadequate validation of permissions when employing remote tools and macros within Devolutions Remote Desktop Manager versions 2023.2.19 and previous versions permits a user to initiate a connection without proper execution rights via the remote tools feature.
Devolutions Remote Desktop Manager
7
CVSSv3
CVE-2022-3182
Improper Access Control vulnerability in the Duo SMS two-factor of Devolutions Remote Desktop Manager 2022.2.14 and previous versions allows malicious users to bypass the application lock. This issue affects: Devolutions Remote Desktop Manager version 2022.2.14 and prior versions...
Devolutions Remote Desktop Manager
Preferred Score:
CVSSv3
CVSSv2
CVSSv3
CVSSv4
EPSS
VMScore
Recommendations:
unprivileged
privilege escalation
CVE-2024-57040
morning
CVE-2025-24801
CVE-2025-24813
CVE-2025-29930
CVE-2024-10442
smartos
CVE-2025-0694
cryptolib
mbconnect24
local users
Home
/
Search Results
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »
Vulmon