Remote Desktop Manager 2022.1 and earlier
Initial Publication - 2022-06-21
Medium
Remote Desktop Manager
2022.2
An arbitrary file write in entry attachments was fixed in Remote Desktop Manager 2022.2
Files can be attached to entries in Remote Desktop Manager. Special path characters were not being properly sanitized when constructing the destination path. An attacker could construct a path to write the file in an arbitrary directory when the file is opened.
Upgrade to Remote Desktop Manager 2022.2
Medium - CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:N/I:H/A:N
Remote Desktop Manager 2022.1 and earlier
CVE-2022-33995
Helping organizations control the IT chaos by providing highly-secure password, remote connection and privileged access management solutions.