Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2022-3780

Database connections on deleted users could stay active on MySQL data sources in Remote Desktop Manager 2022.3.7 and below which allow deleted users to access unauthorized data. This issue affects : Remote Desktop Manager 2022.3.7 and prior versions.

Published

2022-11-01T19:15:11.083

Last Modified

2025-05-05T14:15:23.910

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 7.5 (HIGH)

Weaknesses

Type: Secondary
CWE-284
Type: Primary
NVD-CWE-Other

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	devolutions	remote_desktop_manager	< 2022.3.8	Yes

References

https://devolutions.net/security/advisories/DEVO-2022-0008 Vendor Advisory ([email protected])
https://devolutions.net/security/advisories/DEVO-2022-0008 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)