Bypassing Application Lock in Devolutions Remote Desktop Manager 2022.2.14 and Earlier

Bypassing Application Lock in Devolutions Remote Desktop Manager 2022.2.14 and Earlier

CVE-2022-3182 · HIGH Severity

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Improper Access Control vulnerability in the Duo SMS two-factor of Devolutions Remote Desktop Manager 2022.2.14 and earlier allows attackers to bypass the application lock. This issue affects: Devolutions Remote Desktop Manager version 2022.2.14 and prior versions.

Learn more about our Cis Benchmark Audit For Desktop Software.