Lucene search
HistoryDec 21, 2022 - 5:15 p.m.
CVE-2022-4287
cve-2022-4287
authentication bypass
devolutions
remote desktop manager
security vulnerability
windows
8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
8.5 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
39.7%
Authentication bypass in local application lock feature in Devolutions Remote Desktop ManagerΒ 2022.3.26 and earlier on Windows allows malicious user to access the application.
Affected configurations
Node
devolutionsremote_desktop_managerRange<2022.3.27
| CPE | Name | Operator | Version |
|---|---|---|---|
| devolutions:remote_desktop_manager | devolutions remote desktop manager | lt | 2022.3.27 |
CNA Affected
[
{
"defaultStatus": "unaffected",
"modules": [
"Local Application Lock"
],
"platforms": [
"Windows"
],
"product": "Remote Desktop Manager",
"vendor": "Devolutions",
"versions": [
{
"lessThanOrEqual": "2022.3.27",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
}
]Related
nvd
nvd
CVE-2022-4287
2022-12-21 17:15:10
prion
prion
Authentication flaw
2022-12-21 17:15:00
cvelist
cvelist
CVE-2022-4287
2022-12-20 14:16:09
8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
8.5 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
39.7%
Related for CVE-2022-4287