Fortiguard

Improper Restriction of Excessive Authentication Attempts Vulnerability for Devolutions Remote Desktop Manager

Description

Weak password derivation for export in Devolutions Remote Desktop Manager before 2022.1 allows information disclosure via a password brute-force attack. An error caused base64 to be decoded.

Affected Applications

Remote Desktop Manager

CVE References

CVE-2022-26964

Other References

https://devolutions.net/security/advisories/DEVO-2022-0002

ID	4679
Created	Jan 06, 2023
Description Updated	Jan 06, 2023
Severity
Coverage	FortiClient
OS	Windows
Vendor	Devolutions
Patch	manual
Application	Remote Desktop Manager

Network

Files and Endpoint

Application

Additional SOC Services

Threat Encyclopedia

Improper Restriction of Excessive Authentication Attempts Vulnerability for Devolutions Remote Desktop Manager

Description

Affected Applications

CVE References

Other References

Telemetry

News / Research

Network

Files and Endpoint

Application

Additional SOC Services

FortiGate

FortiDeceptor

FortiClient

FortiMail

FortiEDR

FortiADC

FortiAnalyzer

FortiCWP

FortiWeb

FortiNDR

FortiSandBox

FortiTester

Threat Lookup

PSIRT

Resources

Threat Encyclopedia

Improper Restriction of Excessive Authentication Attempts Vulnerability for Devolutions Remote Desktop Manager

Description

Affected Applications

CVE References

Other References

Telemetry