Improper access controls in the entry duplication component in Devolutions Remote Desktop Manager 2023.2.19 and earlier versions on Windows allows an authenticated user, under specific circumstances, to inadvertently share their personal vault entry with shared vaults via an incorrect vault in the duplication write process.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://devolutions.net/security/advisories/DEVO-2023-0015 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: DEVOLUTIONS
Published: 2023-08-21T18:38:06.606Z
Updated: 2024-08-02T07:24:05.034Z
Reserved: 2023-08-18T13:05:41.063Z
Link: CVE-2023-4417
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2023-08-21T19:15:09.187
Modified: 2023-08-25T17:55:22.950
Link: CVE-2023-4417
Redhat
No data.