First published: Wed Nov 01 2023(Updated: )
A remote code execution vulnerability in Remote Desktop Manager 2023.2.33 and earlier on Windows allows an attacker to remotely execute code from another windows user session on the same host via a specially crafted TCP packet.
Credit: security@devolutions.net
Affected Software | Affected Version | How to fix |
---|---|---|
All of | ||
<=2023.2.33 | ||
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2023-5766 is a remote code execution vulnerability in Remote Desktop Manager 2023.2.33 and earlier on Windows.
CVE-2023-5766 allows an attacker to remotely execute code from another Windows user session on the same host via a specially crafted TCP packet.
Devolutions Remote Desktop Manager 2023.2.33 and earlier on Windows is affected by CVE-2023-5766.
CVE-2023-5766 has a severity rating of 9.8 (critical).
To fix CVE-2023-5766, users should update to a version of Remote Desktop Manager that is later than 2023.2.33.