CVE-2022-4287
First published: Tue Dec 20 2022(Updated: )
Authentication bypass in local application lock feature in Devolutions Remote Desktop Manager 2022.3.26 and earlier on Windows allows malicious user to access the application.
Credit: security@devolutions.net
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Devolutions Remote Desktop Manager | <2022.3.27 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2022-4287?
CVE-2022-4287 is a vulnerability in Devolutions Remote Desktop Manager 2022.3.26 and earlier on Windows, which allows a malicious user to bypass authentication and access the application.
How severe is CVE-2022-4287?
CVE-2022-4287 has a severity rating of 8.8, which is classified as high.
What is affected by CVE-2022-4287?
CVE-2022-4287 affects Devolutions Remote Desktop Manager version 2022.3.26 and earlier on Windows.
How can a malicious user exploit CVE-2022-4287?
A malicious user can exploit CVE-2022-4287 by bypassing authentication in the local application lock feature of Devolutions Remote Desktop Manager and gaining unauthorized access to the application.
Is there a fix for CVE-2022-4287?
At the time of writing, a fix for CVE-2022-4287 has not been released. It is recommended to follow the vendor's advisory for any updates or patches.
- collector/nvd-index
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/references
- agent/last-modified-date
- agent/severity
- agent/author
- agent/tags
- agent/type
- agent/first-publish-date
- agent/event
- agent/description
- vendor/devolutions
- canonical/devolutions remote desktop manager