CVE-2023-50976: Transactions API Authorization by oleiman · Pull Request #14969 · redpanda-data/redpanda

CVE-2023-6905

CVE-2023-6903

CVE-2023-6904

CVE-2023-3907

Authentication bypass in local application lock feature in Devolutions Remote Desktop Manager 2022.3.26 and earlier on Windows allows malicious user to access the application.

Security & Compliance Reporting a Security Issue Advisories

**Affected Products**

Remote Desktop Manager 2022.3.26 and earlier.

**Change Log**

Initial Publication - 2022-12-20

**Product**

Remote Desktop Manager

**Summary**

Authentication bypass in local application lock feature in Devolutions Remote Desktop Manager  2022.3.26 and earlier on Windows allows malicious user to access the application.

**Local application lock bypass**

**Description**

Authentication bypass in local application lock feature in Devolutions Remote Desktop Manager  2022.3.26 and earlier on Windows allows malicious user to access the application.

**Remediation and Workarounds**

Upgrade to Remote Desktop Manager 2022.3.27 and later.

**Severity**

High - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

**Affected Products**

Remote Desktop Manager 2022.3.26 and earlier.

Headline

CVE-2022-4287: DEVO-2022-0011

CVE: Latest News