← back
CVE-2023-1202

CVE-2023-1202

CVSS 6.5 MEDIUMEPSS 0.4%CWE-863
Permission bypass when importing or synchronizing entries in User vault in Devolutions Remote Desktop Manager 2023.1.9 and prior versions allows users with restricted rights to bypass entry permission via id collision.
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
Affected products
Devolutions · Remote Desktop Manager

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://devolutions.net/security/advisories/DEVO-2023-0008