Devolutions

Remote Desktop Manager

50 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8

CVE-2026-2590

  • EPSS 0.01%
  • Veröffentlicht 03.03.2026 21:22:34
  • Zuletzt bearbeitet 04.03.2026 18:08:05

Improper enforcement of the Disable password saving in vaults setting in the connection entry component in Devolutions Remote Desktop Manager 2025.3.30 and earlier allows an authenticated user to persist credentials in vault entries, potentially e...

3.3

CVE-2026-0747

  • EPSS 0.01%
  • Veröffentlicht 08.01.2026 19:55:58
  • Zuletzt bearbeitet 22.01.2026 18:14:40

Exposure of sensitive information in the TeamViewer entry dashboard component in Devolutions Remote Desktop Manager 2025.3.24.0 through 2025.3.28.0 on Windows allows an external observer to view a password on screen via a defective masking feature, f...

6.5

CVE-2025-13683

  • EPSS 0.05%
  • Veröffentlicht 28.11.2025 17:00:48
  • Zuletzt bearbeitet 18.12.2025 21:18:26

Exposure of credentials in unintended requests in Devolutions Server, Remote Desktop Manager on Windows.This issue affects Devolutions Server: through 2025.3.8.0; Remote Desktop Manager: through 2025.3.23.0.

7.5

CVE-2025-5334

  • EPSS 0.09%
  • Veröffentlicht 29.05.2025 14:47:25
  • Zuletzt bearbeitet 02.07.2025 17:31:56

Exposure of private personal information to an unauthorized actor in the user vaults component of Devolutions Remote Desktop Manager allows an authenticated user to gain unauthorized access to private personal information. Under specific circumst...

6.8

CVE-2025-2600

  • EPSS 0.18%
  • Veröffentlicht 26.03.2025 17:37:39
  • Zuletzt bearbeitet 26.08.2025 18:15:47

Improper authorization in the variable component in Devolutions Remote Desktop Manager on Windows allows an authenticated user to use the ELEVATED_PASSWORD variable even though not allowed by the "Allow password in variable policy". This issue ...

5.4

CVE-2025-2562

  • EPSS 0.22%
  • Veröffentlicht 26.03.2025 17:24:37
  • Zuletzt bearbeitet 02.07.2025 17:32:38

Insufficient logging in the autotyping feature in Devolutions Remote Desktop Manager on Windows allows an authenticated user to use a stored password without generating a corresponding log event, via the use of the autotyping functionality. Th...

3.6

CVE-2025-2528

  • EPSS 0.05%
  • Veröffentlicht 26.03.2025 17:20:00
  • Zuletzt bearbeitet 02.07.2025 17:32:48

Improper authorization in application password policy in Devolutions Remote Desktop Manager on Windows allows an authenticated user to use a configuration different from the one mandated by the system administrators. This issue affects Remote D...

5.4

CVE-2025-2499

  • EPSS 0.16%
  • Veröffentlicht 26.03.2025 17:14:59
  • Zuletzt bearbeitet 02.07.2025 17:32:56

Client side access control bypass in the permission component in Devolutions Remote Desktop Manager on Windows. An authenticated user can exploit this flaw to bypass certain permission restrictions—specifically View Password, Edit Asset, and Edit Pe...

6.5

CVE-2025-1636

  • EPSS 0.16%
  • Veröffentlicht 13.03.2025 13:15:46
  • Zuletzt bearbeitet 28.03.2025 16:20:21

Exposure of sensitive information in My Personal Credentials password history component in Devolutions Remote Desktop Manager 2024.3.29 and earlier on Windows allows an authenticated user to inadvertently leak the My Personal Credentials in a shared ...

6.5

CVE-2025-1635

  • EPSS 0.16%
  • Veröffentlicht 13.03.2025 13:15:46
  • Zuletzt bearbeitet 28.03.2025 16:20:27

Exposure of sensitive information in hub data source export feature in Devolutions Remote Desktop Manager 2024.3.29 and earlier on Windows allows a user exporting a hub data source to include his authenticated session in the export due to faulty busi...