Vulnerabilities > Devolutions > Remote Desktop Manager > High

DATE CVE VULNERABILITY TITLE RISK
2023-12-06 CVE-2023-6288 Code Injection vulnerability in Devolutions Remote Desktop Manager
Code injection in Remote Desktop Manager 2023.3.9.3 and earlier on macOS allows an attacker to execute code via the DYLIB_INSERT_LIBRARIES environment variable.
local
low complexity
devolutions CWE-94
7.8
2022-12-21 CVE-2022-4287 Unspecified vulnerability in Devolutions Remote Desktop Manager
Authentication bypass in local application lock feature in Devolutions Remote Desktop Manager  2022.3.26 and earlier on Windows allows malicious user to access the application.
network
low complexity
devolutions
8.8
2022-12-12 CVE-2022-3641 Unspecified vulnerability in Devolutions Remote Desktop Manager 2022.3.13/2022.3.24
Elevation of privilege in the Azure SQL Data Source in Devolutions Remote Desktop Manager 2022.3.13 to 2022.3.24 allows an authenticated user to spoof a privileged account.
network
low complexity
devolutions
8.8
2022-11-01 CVE-2022-3780 Unspecified vulnerability in Devolutions Remote Desktop Manager
Database connections on deleted users could stay active on MySQL data sources in Remote Desktop Manager 2022.3.7 and below which allow deleted users to access unauthorized data.
network
low complexity
devolutions
7.5