CVE-2023-7047

Summary

CVE-2023-7047 is a vulnerability that affects the Devolutions Remote Desktop Manager versions 2023.3.31 and earlier, specifically in the context menu remote tools feature for SQL data sources. The vulnerability allows users to initiate a connection without proper execution rights due to inadequate validation of permissions. Remediation for this vulnerability is not specified in the provided information. The potential danger it poses to an organization is categorized as medium severity, with low privileges required and low impacts on integrity and confidentiality. The attack vector is local, and there is no user interaction required.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.