Security & Compliance

DEVO-2024-0001

Zusammenfassung

Remote Desktop Manager Windows is affected by a vulnerability.

Betroffene Produkte

Remote Desktop Manager Windows 2023.3.36.0 and earlier.

Änderungsprotokoll

2024-01-31 - Initial Publication

Schweregrad

Medium

Produkt

Remote Desktop Manager

Behobene Version

2023.3.37

Cross-site scripting (XSS) vulnerability in the entry overview tab

Beschreibung

Cross-site scripting (XSS) vulnerability in the entry overview tab in Devolutions Remote Desktop Manager 2023.3.36 and earlier on Windows allows an attacker with access to a data source to inject a malicious script via a specially crafted input in an entry.

Behebungen und Workarounds

Upgrade to Remote Desktop Manager 2023.3.37.0 or higher

Schweregrad

4.8 Medium - CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:A/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/U:Green

Betroffene Produkte

Remote Desktop Manager Windows 2023.3.36.0 and earlier

CVE(s)

CVE-2024-0589

Wir helfen Unternehmen dabei, das IT-Chaos zu meistern, indem wir Lösungen für Passwortverwaltung, Remoteverbindungen und privilegierte Zugriffsverwaltung bereitstellen.

DEVOLUTIONS

Sicherheit & Datenschutz | infos@devolutions.net

Alle Rechte vorbehalten © 2025 Devolutions