First published: Mon Aug 21 2023(Updated: )
Inadequate validation of permissions when employing remote tools and macros within Devolutions Remote Desktop Manager versions 2023.2.19 and earlier permits a user to initiate a connection without proper execution rights via the remote tools feature.
Credit: security@devolutions.net security@devolutions.net
Affected Software | Affected Version | How to fix |
---|---|---|
Devolutions Remote Desktop Manager | <=2023.2.19 | |
<=2023.2.19 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID is CVE-2023-4373.
The title of this vulnerability is 'Inadequate validation of permissions when employing remote tools and macros within Devolutions Remote Desktop Manager'.
The severity of CVE-2023-4373 is critical with a score of 9.8.
Devolutions Remote Desktop Manager versions 2023.2.19 and earlier are affected by CVE-2023-4373.
To fix the vulnerability CVE-2023-4373, it is recommended to update to a version later than 2023.2.19 of Devolutions Remote Desktop Manager.