Vulnerability in Devolutions Remote Desktop Manager
CVE-2025-2499
Client side access control bypass in the permission component in Devolutions Remote Desktop Manager on Windows. An authenticated user can exploit this flaw to bypass certain permission restrictions—specifically View Password, Edit Asset…
EPSS: 0.001 (21.3th percentile) — read the EPSS interpretation.
Affected products
- Devolutions Remote Desktop Manager — versions 2025.1.24, 0