Sécurité et conformité
DEVO-2024-0012
Résumé
Remote Desktop Manager Windows is affected by a vulnerability.
Produits affectés
Remote Desktop Manager 2024.2.14 and earlier
Journal des modifications
16/7/2024 - Initial publication
Sévérité
High
Produit
Remote Desktop Manager Windows
Version corrigée
2024.2.15.0
Exposure of Sensitive Information in edge browser session proxy feature
Description
Exposure of Sensitive Information in edge browser session proxy feature in Devolutions Remote Desktop Manager 2024.2.14.0 and earlier on Windows allows an attacker to intercept proxy credentials via a specially crafted website.
Mesures correctives et solutions de contournement
Upgrade to Remote Desktop Manager 2024.2.15.0 or higher
Sévérité
7.1 High - CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/U:Amber
Produits affectés
Remote Desktop Manager 2024.2.14.0 and earlier
CVE(s)
CVE-2024-6492
Crédits
Jérémy Sinou