advisories

Security & compliance

Upholding the highest standards to protect your data and ensure trust.

Advisories
Reporting a Security issue
Trust Center

Advisories Reporting a Security issue Trust Center

Back to listing

DEVO-2021-0001

A Cross-Site Scripting (XSS) vulnerability was fixed in Remote Desktop Manager.

Affected Products

Remote Desktop Manager

2020.2 and earlier

Change Log

Initial publication - 2021-03-30

Medium - CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N

Cross-site scripting (XSS) vulnerability in webviews (CVE-2021-23922)

A cross-site scripting (XSS) vulnerability in the application could allow an actor to inject malicious javascript code in some form fields that are rendered by webviews.

Affected Products

CVE(s)

CVE-2021-23922

Remediation and Workarounds

Install Remote Desktop Manager 2020.3 or more recent.