CVE-2024-11670

Publication date

2024-11-25 14:46:58

Family

DEVOLUTIONS

State

PUBLISHED

Description

Incorrect authorization in the permission validation component of Devolutions Remote Desktop Manager 2024.2.21 and earlier on Windows allows a malicious authenticated user to bypass the "View Password" permission via specific actions.