An incomplete permission check on entries in Devolutions Remote Desktop Manager before 2021.2.16 allows attackers to bypass permissions via batch custom PowerShell.
[
{
"product": "Remote Desktop Manager",
"vendor": "Devolutions",
"versions": [
{
"status": "affected",
"version": "2021.2.14 and earlier. Fixed in 2021.2.16."
}
]
}
]