MAIN MENU

Security & compliance

Upholding the highest standards to protect your data and ensure trust.

DEVO-2021-0006

An incomplete permission check allows users to perform operations on entries without the required permissions when using the batch "Custom Powershell" action.

Affected Products

Remote Desktop Manager
2021.2.14 and earlier

Change Log

2021-10-14 - Initial Publication

Permissions bypass with batch Custom Powershell

High - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

Users could perform operations on entries without the required permissions when using the batch "Custom Powershell" action.

CVE(s)

CVE-2021-42098

Remediation and Workarounds

Upgrade to Remote Desktop Manager 2021.2.16 or higher