Portal
Forum
Devolutions Force
Devolutions Hub Business
Devolutions Hub Personal
Devolutions Send
Devolutions Academy
RDM
Workspace
Launcher
Security & Compliance
DEVO-2022-0010
Zusammenfassung
Elevation of privilege in the Azure SQL Data Source in Devolutions Remote Desktop Manager 2022.3.13 to 2022.3.24 allows an authenticated user to spoof a privileged account.
Betroffene Produkte
Remote Desktop Manager 2022.3.13 to 2022.3.24.
Änderungsprotokoll
Initial publication - 2022-12-7
Schweregrad
Medium
Produkt
Remote Desktop Manager
Behobene Version
2022.3.26
Remote Desktop Manager Azure SQL privilege escalation
Beschreibung
Elevation of privilege in the Azure SQL Data Source in Devolutions Remote Desktop Manager 2022.3.13 to 2022.3.24 allows an authenticated user to spoof a privileged account.
Behebungen und Workarounds
Update to Remote Desktop Manager 2022.3.26 or higher.
Schweregrad
High - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
Betroffene Produkte
Remote Desktop Manager 2022.3.13 to 2022.3.24
CVE(s)
CVE-2022-3641
