How severe is CVE-2022-26964?

CVE-2022-26964 has a CVSS v3 score of 7.4 (HIGH).

CVE-2022-26964

Name: remote_desktop_manager
Author: devolutions

7.4HIGH

Weak password derivation for export in Devolutions Remote Desktop Manager before 2022.1 allows information disclosure via a password brute-force attack. An error caused base64 to be decoded.

Published: 12/26/2022Updated: 4/14/2025

Description

Weak password derivation for export in Devolutions Remote Desktop Manager before 2022.1 allows information disclosure via a password brute-force attack. An error caused base64 to be decoded.

AI AnalysisPowered by AI

Affected Products

devolutionsremote_desktop_manager

References

https://devolutions.net/security/advisories/DEVO-2022-0002
Vendor Advisory
https://devolutions.net/security/advisories/DEVO-2022-0002
Vendor Advisory