Security & Compliance
DEVO-2022-0009
Zusammenfassung
Dashlane password and Keepass Server password in My Account Settings is stored unencrypted in the database.
Betroffene Produkte
Remote Desktop Manager 2022.2.26 and earlier.
Devolutions Server 2022.3.1 and earlier.
Änderungsprotokoll
Initial publication - 2022-11-01
Schweregrad
Medium
Produkt
Remote Desktop Manager, Devolutions Server
Behobene Version
RDM 2022.2.27, DVLS 2022.3.2
Unencrypted sensitive data in the database
Beschreibung
Dashlane password and Keepass Server password in My Account Settings is stored unencrypted in the data base.
Behebungen und Workarounds
Upgrade to Remote Desktop Manager 2022.2.27 or higher.
Upgrade to Devolutions Server 2022.3.2 or higher.
Schweregrad
Medium - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
Betroffene Produkte
Remote Desktop Manager 2022.2.26 and earlier.
Devolutions Server 2022.3.1 and earlier.
CVE(s)
CVE-2022-3781