Security & Compliance

DEVO-2022-0007

Affected Products

Remote Desktop Manager 2022.2.14 and earlier

Change Log

Initial publication - 2022-09-12

Severity

High

Product

Remote Desktop Manager

Fix Version

2022.2.15

Summary

It is possible to bypass the application lock in Remote Desktop Manager when Duo SMS two-factor is used.

Application lock bypass with Duo SMS two-factor

Description

It is possible to bypass the application lock in Remote Desktop Manager when Duo SMS two-factor is used.

Remediation and Workarounds

Upgrade to Remote Desktop Manager 2022.2.15 and later.

Severity

High - CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected Products

Remote Desktop Manager 2022.2.14 and earlier.

CVE(s)

CVE-2022-3182

Devolutions Logo
English français Deutsch
Contact Us

Helping organizations control the IT chaos by providing highly-secure password, remote connection and privileged access management solutions.

DEVOLUTIONS 1000 Notre-Dame, Lavaltrie, QC J5T 1M1, Canada
Legal & Privacy infos@devolutions.net
All rights reserved © 2022 Devolutions