Show filters
255 Total Results
Displaying 91-100 of 255
Sort by:
Attacker Value
Unknown

CVE-2023-1202

Disclosure Date: April 02, 2023 (last updated November 08, 2023)
Permission bypass when importing or synchronizing entries in User vault in Devolutions Remote Desktop Manager 2023.1.9 and prior versions allows users with restricted rights to bypass entry permission via id collision.
Attacker Value
Unknown

CVE-2023-1203

Disclosure Date: March 10, 2023 (last updated November 08, 2023)
Improper removal of sensitive data in the entry edit feature of Hub Business submodule in Devolutions Remote Desktop Manager PowerShell Module 2022.3.1.5 and earlier allows an authenticated user to access sensitive data on entries that were edited using the affected submodule.
Attacker Value
Unknown

CVE-2023-1188

Disclosure Date: March 06, 2023 (last updated October 08, 2023)
A vulnerability was found in FabulaTech Webcam for Remote Desktop 2.8.42. It has been classified as problematic. Affected is the function 0x222018 in the library ftwebcam.sys of the component IoControlCode Handler. The manipulation leads to denial of service. The attack needs to be approached locally. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-222360.
Attacker Value
Unknown

CVE-2023-1187

Disclosure Date: March 06, 2023 (last updated October 08, 2023)
A vulnerability was found in FabulaTech Webcam for Remote Desktop 2.8.42 and classified as problematic. This issue affects some unknown processing in the library ftwebcam.sys of the component Global Variable Handler. The manipulation leads to denial of service. It is possible to launch the attack on the local host. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-222359.
Attacker Value
Unknown

CVE-2023-1186

Disclosure Date: March 06, 2023 (last updated October 08, 2023)
A vulnerability has been found in FabulaTech Webcam for Remote Desktop 2.8.42 and classified as problematic. This vulnerability affects the function 0x222010/0x222018 in the library ftwebcam.sys of the component IOCTL Handler. The manipulation leads to null pointer dereference. Attacking locally is a requirement. The exploit has been disclosed to the public and may be used. VDB-222358 is the identifier assigned to this vulnerability.
Attacker Value
Unknown

CVE-2023-0463

Disclosure Date: January 26, 2023 (last updated November 08, 2023)
The force offline MFA prompt setting is not respected when switching to offline mode in Devolutions Remote Desktop Manager 2022.3.29 to 2022.3.30 allows a user to save sensitive data on disk.
Attacker Value
Unknown

CVE-2022-43931

Disclosure Date: January 03, 2023 (last updated October 08, 2023)
Out-of-bounds write vulnerability in Remote Desktop Functionality in Synology VPN Plus Server before 1.4.3-0534 and 1.4.4-0635 allows remote attackers to execute arbitrary commands via unspecified vectors.
Attacker Value
Unknown

CVE-2022-26964

Disclosure Date: December 26, 2022 (last updated October 08, 2023)
Weak password derivation for export in Devolutions Remote Desktop Manager before 2022.1 allows information disclosure via a password brute-force attack. An error caused base64 to be decoded.
Attacker Value
Unknown

CVE-2022-4287

Disclosure Date: December 21, 2022 (last updated November 08, 2023)
Authentication bypass in local application lock feature in Devolutions Remote Desktop Manager  2022.3.26 and earlier on Windows allows malicious user to access the application.
Attacker Value
Unknown

CVE-2022-3641

Disclosure Date: December 12, 2022 (last updated November 08, 2023)
Elevation of privilege in the Azure SQL Data Source in Devolutions Remote Desktop Manager 2022.3.13 to 2022.3.24 allows an authenticated user to spoof a privileged account.