漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
N/A
Vulnerability Description
Improper authorization in the variable component in Devolutions Remote Desktop Manager on Windows allows an authenticated user to use the ELEVATED_PASSWORD variable even though not allowed by the "Allow password in variable policy". This issue affects Remote Desktop Manager versions from 2025.1.24 through 2025.1.25, and all versions up to 2024.3.29.
CVSS Information
N/A
Vulnerability Type
授权机制不恰当
Vulnerability Title
Devolutions Remote Desktop Manager 安全漏洞
Vulnerability Description
Devolutions Remote Desktop Manager是加拿大Devolutions公司的一个应用系统。提供远程桌面管理功能。 Devolutions Remote Desktop Manager 2025.1.24至2025.1.25版本和2024.3.29及之前版本存在安全漏洞,该漏洞源于变量组件授权不当可能导致密码策略绕过。
CVSS Information
N/A
Vulnerability Type
N/A