Описание
Database connections on deleted users could stay active on MySQL data sources in Remote Desktop Manager 2022.3.7 and below which allow deleted users to access unauthorized data.
This issue affects : Remote Desktop Manager 2022.3.7 and prior versions.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 2022.3.8 (исключая)
cpe:2.3:a:devolutions:remote_desktop_manager:*:*:*:*:*:*:*:*
EPSS
Процентиль: 40%
0.00177
Низкий
7.5 High
CVSS3
Дефекты
CWE-284
NVD-CWE-Other
Связанные уязвимости
CVSS3: 7.5
github
больше 2 лет назад
Database connections on deleted users could stay active on MySQL data sources in Remote Desktop Manager 2022.3.7 and below which allow deleted users to access unauthorized data. This issue affects : Remote Desktop Manager 2022.3.7 and prior versions.
EPSS
Процентиль: 40%
0.00177
Низкий
7.5 High
CVSS3
Дефекты
CWE-284
NVD-CWE-Other