An incomplete permission check on entries in Devolutions Remote Desktop Manager before 2021.2.16 allows attackers to bypass permissions via batch custom PowerShell.

Related CVEs

CVE-2021-42098

Key Information

GHSA ID

GHSA-2f87-25r8-5pw3

Published

May 24, 2022 7:17 PM

Last Modified

May 24, 2022 7:17 PM

CVSS Score

7.5 /10

Primary Ecosystem

Unknown

Primary Package

Unknown

GitHub Reviewed

✗ No

Dataset

Last updated: July 6, 2025 6:30 AM

Data from GitHub Advisory Database. This information is provided for research and educational purposes.