CVE-2025-1636
Essential information
- Published
- 13/03/2025 13:15
- Modified
- 13/03/2025 18:15
- Author
- —
- Creator
- —
- CISA KEV
- No
- CWE
- —
- CVSS vector
- — — —
Description
Exposure of sensitive information in My Personal Credentials password history component in Devolutions Remote Desktop Manager 2024.3.29 and earlier on Windows allows an authenticated user to inadvertently leak the My Personal Credentials in a shared vault via the clear history feature due to faulty business logic.
NVD status
- Status
- Received — CVE has been recently published to the CVE List and has been received by the NVD.
- Source
- [email protected]
- NVD
- View on NVD
Affected products (CPE)
| Product | CPE |
|---|---|
| devolutions / remote desktop manager | cpe:2.3:a:devolutions:remote_desktop_manager:*:2024.3.29:*:*:*:windows:*:*:* |