CVE-2023-4417

Improper access controls in the entry duplication component in Devolutions Remote Desktop Manager 2023.2.19 and earlier versions on Windows allows an authenticated user, under specific circumstances, to inadvertently share their personal vault entry with shared vaults via an incorrect vault in the duplication write process.
Configurations

Configuration 1 (hide)

AND
cpe:2.3:a:devolutions:remote_desktop_manager:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*

History

21 Nov 2024, 08:35

Type Values Removed Values Added
References () https://devolutions.net/security/advisories/DEVO-2023-0015 - Vendor Advisory () https://devolutions.net/security/advisories/DEVO-2023-0015 - Vendor Advisory

Information

Published : 2023-08-21 19:15

Updated : 2024-11-21 08:35


NVD link : CVE-2023-4417

Mitre link : CVE-2023-4417

CVE.ORG link : CVE-2023-4417


JSON object : View

Products Affected

devolutions

  • remote_desktop_manager

microsoft

  • windows