Sécurité et conformité
DEVO-2021-0001
Résumé
A Cross-Site Scripting (XSS) vulnerability was fixed in Remote Desktop Manager.
Produits affectés
Remote Desktop Manager 2020.2 and earlier
Journal des modifications
Initial publication - 2021-03-30
Sévérité
Medium
Produit
Remote Desktop Manager
Version corrigée
2020.3
Cross-site scripting (XSS) vulnerability in webviews (CVE-2021-23922)
Description
A cross-site scripting (XSS) vulnerability in the application could allow an actor to inject malicious javascript code in some form fields that are rendered by webviews.
Mesures correctives et solutions de contournement
Install Remote Desktop Manager 2020.3 or more recent.
Sévérité
Medium - CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N
Produits affectés
Remote Desktop Manager 2020.2 and earlier
CVE(s)
CVE-2021-23922