Security & Compliance
DEVO-2021-0006
Zusammenfassung
An incomplete permission check allows users to perform operations on entries without the required permissions when using the batch "Custom Powershell" action.
Betroffene Produkte
Remote Desktop Manager 2021.2.14 and earlier
Änderungsprotokoll
2021-10-14 - Initial Publication
Schweregrad
High
Produkt
Remote Desktop Manager
Behobene Version
2021.2.16
Permissions bypass with batch Custom Powershell
Beschreibung
Users could perform operations on entries without the required permissions when using the batch "Custom Powershell" action.
Behebungen und Workarounds
Update to Remote Desktop Manager 2021.2.16 or higher
Schweregrad
High - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
Betroffene Produkte
Remote Desktop Manager 2021.2.14 and earlier
CVE(s)
CVE-2021-42098