What is CVE-2024-7421?

CVE-2024-7421 is a vulnerability in Devolutions Remote Desktop Manager, classified under Insertion of Sensitive Information into Log File. Published 2024-09-25.

Is CVE-2024-7421 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Information disclosure in Devolutions Remote Desktop Manager

CVE-2024-7421

An information exposure in Devolutions Remote Desktop Manager 2024.2.20.0 and earlier on Windows allows local attackers with access to system logs to obtain session credentials via passwords included in command-line arguments when launchin…

EPSS: 0.001 (32.0th percentile) — read the EPSS interpretation.

Affected products

Devolutions Remote Desktop Manager — versions 0

Weakness classification (CWE)

CWE-532 — Insertion of Sensitive Information into Log File

Public proof-of-concept exploits

fkie-cad/nvd-json-data-feeds

References

devolutions.net/security/advisories/DEVO-2024-0014

Frequently asked questions

What is CVE-2024-7421?: CVE-2024-7421 is a vulnerability in Devolutions Remote Desktop Manager, classified under Insertion of Sensitive Information into Log File. Published 2024-09-25.
Is CVE-2024-7421 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.