CVE-2023-4417

CVSS 3.1 Score 5.4 of 10 (medium)

Details

Published Aug 21, 2023

Updated: Aug 25, 2023

CWE ID 79

Summary

CVE-2023-4417 is a vulnerability affecting Devolutions Remote Desktop Manager 2023.2.19 and earlier versions on Windows. The issue lies in the entry duplication component, where improper access controls enable an authenticated user to inadvertently transfer their personal vault entry to shared vaults. This occurs during a duplication write process, where incorrect vault identification takes place.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/sz9Cn3
https://www.cve.org/CVERecord?id=CVE-2023-4417
https://nvd.nist.gov/vuln/detail/CVE-2023-4417

Back to Vulnerability Database

CVE-2023-4417

CVSS 3.1 Score 5.4 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations