CVSS: 6.5EPSS: 0%CPEs: 2EXPL: 0CVE-2023-4417
https://notcve.org/view.php?id=CVE-2023-4417
Improper access controls in the entry duplication component in Devolutions Remote Desktop Manager 2023.2.19 and earlier versions on Windows allows an authenticated user, under specific circumstances, to inadvertently share their personal vault entry with shared vaults via an incorrect vault in the duplication write process. • https://devolutions.net/security/advisories/DEVO-2023-0015 •
CVSS: 8.8EPSS: 3%CPEs: 16EXPL: 0CVE-2023-29362 – Remote Desktop Client Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2023-29362
Remote Desktop Client Remote Code Execution Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29362 • CWE-122: Heap-based Buffer Overflow •
CVSS: 6.5EPSS: 0%CPEs: 10EXPL: 0CVE-2023-29352 – Windows Remote Desktop Security Feature Bypass Vulnerability
https://notcve.org/view.php?id=CVE-2023-29352
Windows Remote Desktop Security Feature Bypass Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29352 •
CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 0CVE-2023-28290 – Microsoft Remote Desktop app for Windows Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2023-28290
Microsoft Remote Desktop app for Windows Information Disclosure Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-28290 •
CVSS: 6.5EPSS: 0%CPEs: 2EXPL: 0CVE-2023-2282
https://notcve.org/view.php?id=CVE-2023-2282
Improper access control in the Web Login listener in Devolutions Remote Desktop Manager 2023.1.22 and earlier on Windows allows an authenticated user to bypass administrator-enforced Web Login restrictions and gain access to entries via an unexpected vector. • https://devolutions.net/security/advisories/DEVO-2023-0012 •