DEVO-2022-0003

Affected Products

Remote Desktop Manager 2022.1.24 and earlier

Change Log

Initial Publication - 2022-04-13

Severity

Low

Product

Remote Desktop Manager

Fix Version

2022.1.25

Summary

An issue was identified where masked fields would sometime stay revealed when reopening a panel.

Masked fields sometimes stay revealed when reopening a panel

Description

Sensitive values such as passwords are masked by default and can be revealed with the "eye" icon. Due to a caching issue, fields would sometimes stay revealed when closing and reopening a panel, which could lead to involuntarily disclosing sensitive information.

Remediation and Workarounds

Update to Remote Desktop Manager 2022.1.25 or higher

Severity

Low - CVSS:3.1/AV:P/AC:H/PR:L/UI:R/S:U/C:H/I:N/A:N

Affected Products

Remote Desktop Manager 2022.1.24 and earlier

CVE(s)

CVE-2022-1342