Vulnerabilities > Devolutions > Remote Desktop Manager > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-12-06 | CVE-2023-6288 | Code Injection vulnerability in Devolutions Remote Desktop Manager Code injection in Remote Desktop Manager 2023.3.9.3 and earlier on macOS allows an attacker to execute code via the DYLIB_INSERT_LIBRARIES environment variable. | 7.8 |
| 2022-12-21 | CVE-2022-4287 | Unspecified vulnerability in Devolutions Remote Desktop Manager Authentication bypass in local application lock feature in Devolutions Remote Desktop Manager 2022.3.26 and earlier on Windows allows malicious user to access the application. | 8.8 |
| 2022-12-12 | CVE-2022-3641 | Unspecified vulnerability in Devolutions Remote Desktop Manager 2022.3.13/2022.3.24 Elevation of privilege in the Azure SQL Data Source in Devolutions Remote Desktop Manager 2022.3.13 to 2022.3.24 allows an authenticated user to spoof a privileged account. | 8.8 |
| 2022-11-01 | CVE-2022-3780 | Unspecified vulnerability in Devolutions Remote Desktop Manager Database connections on deleted users could stay active on MySQL data sources in Remote Desktop Manager 2022.3.7 and below which allow deleted users to access unauthorized data. | 7.5 |