CPE Details
Devolutions Remote Desktop Manager 2023.3.9.3
2023.3.9.3
2023-12-11
18h12 +00:00
18h12 +00:00
2023-12-11
18h12 +00:00
18h12 +00:00
Alerte pour un CPE
Restez informé de toutes modifications pour un CPE spécifique.
CPE Name: cpe:2.3:a:devolutions:remote_desktop_manager:2023.3.9.3:*:*:*:*:*:*:*
Informations
Vendor
devolutionsProduct
remote_desktop_managerVersion
2023.3.9.3Related CVE
| CVE ID | Publié | Description | Score | Gravité |
|---|---|---|---|---|
| An information exposure in Devolutions Remote Desktop Manager 2024.2.20.0 and earlier on Windows allows local attackers with access to system logs to obtain session credentials via passwords included in command-line arguments when launching WinSCP sessions | 5.5 |
Moyen |
||
| Improper cleanup in temporary file handling component in Devolutions Remote Desktop Manager 2024.1.12 and earlier on Windows allows an attacker that compromised a user endpoint, under specific circumstances, to access sensitive information via residual files in the temporary directory. | 5.9 |
Moyen |
||
| Cross-site scripting (XSS) vulnerability in the entry overview tab in Devolutions Remote Desktop Manager 2023.3.36 and earlier on Windows allows an attacker with access to a data source to inject a malicious script via a specially crafted input in an entry. | 5.4 |
Moyen |
||
| Inadequate validation of permissions when employing remote tools and macros via the context menu within Devolutions Remote Desktop Manager versions 2023.3.31 and earlier permits a user to initiate a connection without proper execution rights via the remote tools feature. This affects only SQL data sources. | 4.4 |
Moyen |
||
| Code injection in Remote Desktop Manager 2023.3.9.3 and earlier on macOS allows an attacker to execute code via the DYLIB_INSERT_LIBRARIES environment variable. | 7.8 |
Haute |
2025©
tesweb SA
