809 matches found
CVE-2023-0661
Improper access control in Devolutions Server allows an authenticated user to access unauthorized sensitive data...
Improper access control
Improper access control in Devolutions Server allows an authenticated user to access unauthorized sensitive data...
Devolutions Server 安全漏洞
Devolutions Server is an application from Devolutions Canada. which provides a full-featured shared account and password management solution. A security vulnerability exists in Devolutions Server that stems from incorrect access control. An attacker could exploit the vulnerability to obtain...
CVE-2023-0661
Improper access control in Devolutions Server allows an authenticated user to access unauthorized sensitive data...
CVE-2023-0661
CVE-2023-0661 affects Devolutions Server. The vulnerability is an improper access control flaw that allows an authenticated user to access sensitive data they should not be able to view. The root cause is an access-control weakness; the impact is stated as high confidentiality impact with no inte...
CVE-2023-0661
Improper access control in Devolutions Server allows an authenticated user to access unauthorized sensitive data...
Default credentials
Dashlane password and Keepass Server password in My Account Settings are not encrypted in the database in Devolutions Remote Desktop Manager 2022.2.26 and prior versions and Devolutions Server 2022.3.1 and prior versions which allows database users to read the data. This issue affects : Remote...
CVE-2022-3781
Dashlane password and Keepass Server password in My Account Settings are not encrypted in the database in Devolutions Remote Desktop Manager 2022.2.26 and prior versions and Devolutions Server 2022.3.1 and prior versions which allows database users to read the data. This issue affects : Remote...
CVE-2022-3781
Dashlane password and Keepass Server password in My Account Settings are not encrypted in the database in Devolutions Remote Desktop Manager 2022.2.26 and prior versions and Devolutions Server 2022.3.1 and prior versions which allows database users to read the data. This issue affects : Remote...
PT-2022-24088 · Devolutions +1 · Devolutions Remote Desktop Manager +2
Name of the Vulnerable Software and Affected Versions: Devolutions Remote Desktop Manager versions 2022.2.26 and prior Devolutions Server versions 2022.3.1 and prior Description: The issue concerns the lack of encryption for Dashlane password and Keepass Server password in My Account Settings,...
CVE-2022-33996
Incorrect permission management in Devolutions Server before 2022.2 allows a new user with a preexisting username to inherit the permissions of that previous user...
CVE-2022-33996
Incorrect permission management in Devolutions Server before 2022.2 allows a new user with a preexisting username to inherit the permissions of that previous user...
CVE-2022-33996
Incorrect permission management in Devolutions Server before 2022.2 allows a new user with a preexisting username to inherit the permissions of that previous user...
Code injection
Incorrect permission management in Devolutions Server before 2022.2 allows a new user with a preexisting username to inherit the permissions of that previous user...
CVE-2022-33996
CVE-2022-33996 affects Devolutions Server older than 2022.2. The issue is incorrect permission management where a new user with a preexisting username inherits the permissions of the previous user. Documented impact includes potential confidentiality, integrity, and availability concerns, with CV...
Devolutions Server 安全漏洞
Devolutions Server is an application from Devolutions Canada. It provides a full-featured shared account and password management solution. A security vulnerability exists in Devolutions Server versions prior to 2022.2 that stems from incorrect privilege management. An attacker could exploit the...
CVE-2022-2316
HTML injection vulnerability in secure messages of Devolutions Server before 2022.2 allows attackers to alter the rendering of the page or redirect a user to another site...
CVE-2022-2316
HTML injection vulnerability in secure messages of Devolutions Server before 2022.2 allows attackers to alter the rendering of the page or redirect a user to another site...
CVE-2022-2316
HTML injection vulnerability in secure messages of Devolutions Server before 2022.2 allows attackers to alter the rendering of the page or redirect a user to another site...
Design/Logic Flaw
HTML injection vulnerability in secure messages of Devolutions Server before 2022.2 allows attackers to alter the rendering of the page or redirect a user to another site...