Devolutions: >> Remote Desktop Manager >> 2022.3.35.0 Security Vulnerabilities
Improper access control in the Web Login listener in Devolutions Remote Desktop Manager 2023.1.22 and earlier on Windows allows an authenticated user to bypass administrator-enforced Web Login restrictions and gain access to entries via an unexpected vector.
CVSS Score
6.5
EPSS Score
0.001
Published
2023-04-25
Permission bypass when importing or synchronizing entriesĀ in User vault
in Devolutions Remote Desktop Manager 2023.1.9 and prior versions allows users with restricted rights to bypass entry permission via id collision.
CVSS Score
6.5
EPSS Score
0.0
Published
2023-04-02
Page 2