Sécurité et conformité
DEVO-2021-0006
Résumé
An incomplete permission check allows users to perform operations on entries without the required permissions when using the batch "Custom Powershell" action.
Produits affectés
Remote Desktop Manager 2021.2.14 and earlier
Journal des modifications
2021-10-14 - Initial Publication
Sévérité
High
Produit
Remote Desktop Manager
Version corrigée
2021.2.16
Permissions bypass with batch Custom Powershell
Description
Users could perform operations on entries without the required permissions when using the batch "Custom Powershell" action.
Mesures correctives et solutions de contournement
Update to Remote Desktop Manager 2021.2.16 or higher
Sévérité
High - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
Produits affectés
Remote Desktop Manager 2021.2.14 and earlier
CVE(s)
CVE-2021-42098