Devolutions Remote Desktop Manager 2024.3.12.0 Free Edition for Windows

CPE Details

Devolutions Remote Desktop Manager 2024.3.12.0 Free Edition for Windows
devolutions
remote_desktop_manager
2024.3.12.0
2025-04-04
16h34 +00:00
2025-04-04
16h34 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:devolutions:remote_desktop_manager:2024.3.12.0:*:*:*:free:windows:*:*

Informations

Vendor

devolutions

Product

remote_desktop_manager

Version

2024.3.12.0

Software Edition

free

Target Software

windows

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2025-1636 2025-03-13 12h47 +00:00 Exposure of sensitive information in My Personal Credentials password history component in Devolutions Remote Desktop Manager 2024.3.29 and earlier on Windows allows an authenticated user to inadvertently leak the My Personal Credentials in a shared vault via the clear history feature due to faulty business logic.
6.5
Medium
CVE-2025-1635 2025-03-13 12h47 +00:00 Exposure of sensitive information in hub data source export feature in Devolutions Remote Desktop Manager 2024.3.29 and earlier on Windows allows a user exporting a hub data source to include his authenticated session in the export due to faulty business logic.
6.5
Medium
CVE-2025-1193 2025-02-10 13h55 +00:00 Improper host validation in the certificate validation component in Devolutions Remote Desktop Manager on 2024.3.19 and earlier on Windows allows an attacker to intercept and modify encrypted communications via a man-in-the-middle attack by presenting a certificate for a different host.
8.1
High
CVE-2024-12149 2024-12-04 17h18 +00:00 Incorrect permission assignment in temporary access requests component in Devolutions Remote Desktop Manager 2024.3.19.0 and earlier on Windows allows an authenticated user that request temporary permissions on an entry to obtain more privileges than requested.
8.1
High
CVE-2024-11671 2024-11-25 14h46 +00:00 Improper authentication in SQL data source MFA validation in Devolutions Remote Desktop Manager 2024.3.17 and earlier on Windows allows an authenticated user to bypass the MFA validation via data source switching.
5.4
Medium
The information presented on CVE Find originates from several carefully selected reference sources. CVE data is provided by MITRE Corporation and the National Vulnerability Database (NVD). The Known Exploited Vulnerabilities (KEV) catalog is sourced from the Cybersecurity and Infrastructure Security Agency (CISA), while EPSS scores come from FIRST.org. Additionally, data regarding software weaknesses (CWE) and common attack patterns (CAPEC) is maintained by MITRE Corporation, and information on hardware and software configurations (CPE) is provided by the NVD.