Security & Compliance
DEVO-2024-0012
Zusammenfassung
Remote Desktop Manager Windows is affected by a vulnerability.
Betroffene Produkte
Remote Desktop Manager 2024.2.14 and earlier
Änderungsprotokoll
16/7/2024 - Initial publication
Schweregrad
High
Produkt
Remote Desktop Manager Windows
Behobene Version
2024.2.15.0
Exposure of Sensitive Information in edge browser session proxy feature
Beschreibung
Exposure of Sensitive Information in edge browser session proxy feature in Devolutions Remote Desktop Manager 2024.2.14.0 and earlier on Windows allows an attacker to intercept proxy credentials via a specially crafted website.
Behebungen und Workarounds
Upgrade to Remote Desktop Manager 2024.2.15.0 or higher
Schweregrad
7.1 High - CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/U:Amber
Betroffene Produkte
Remote Desktop Manager 2024.2.14.0 and earlier
CVE(s)
CVE-2024-6492
Danksagungen
Jérémy Sinou