Insufficient logging in the autotyping feature in Devolutions Remote Desktop Manager on Windows allows an authenticated user to use a stored password without generating a corresponding log event, via the use of the autotyping functionality.
This issue affects Remote Desktop Manager versions from 2025.1.24 through 2025.1.25, and all versions up to 2024.3.29.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://devolutions.net/security/advisories/DEVO-2025-0005/ |
![]() ![]() |
History
Wed, 02 Jul 2025 18:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Devolutions
Devolutions remote Desktop Manager |
|
CPEs | cpe:2.3:a:devolutions:remote_desktop_manager:*:*:*:*:free:windows:*:* cpe:2.3:a:devolutions:remote_desktop_manager:*:*:*:*:team:windows:*:* |
|
Vendors & Products |
Devolutions
Devolutions remote Desktop Manager |
Wed, 26 Mar 2025 19:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
cvssV3_1
|
Wed, 26 Mar 2025 17:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | Insufficient logging in the autotyping feature in Devolutions Remote Desktop Manager on Windows allows an authenticated user to use a stored password without generating a corresponding log event, via the use of the autotyping functionality. This issue affects Remote Desktop Manager versions from 2025.1.24 through 2025.1.25, and all versions up to 2024.3.29. | |
Weaknesses | CWE-778 | |
References |
|

Status: PUBLISHED
Assigner: DEVOLUTIONS
Published: 2025-03-26T17:24:37.280Z
Updated: 2025-03-26T18:18:25.425Z
Reserved: 2025-03-20T13:03:18.069Z
Link: CVE-2025-2562

Updated: 2025-03-26T18:18:07.705Z

Status : Analyzed
Published: 2025-03-26T18:15:26.247
Modified: 2025-07-02T17:32:38.117
Link: CVE-2025-2562

No data.