CVE-2023-1980 Report - Details, Severity, & Advisories
Twingate Team
•
Apr 25, 2024
CVE-2023-1980 is a medium-severity vulnerability affecting Devolutions Remote Desktop Manager, a software used for managing remote connections. Specifically, this vulnerability allows users to bypass two-factor authentication during login in versions 2022.3.35 and earlier. As a result, systems running these affected versions of the software are at risk. To mitigate this issue, users should upgrade to Remote Desktop Manager version 2023.1.10 or higher.
How do I know if I'm affected?
To determine if you're affected by the vulnerability, you'll need to check if you're using Devolutions Remote Desktop Manager version 2022.3.35 or earlier. This vulnerability allows users to bypass two-factor authentication during login, potentially putting your system at risk. If you're using one of these affected versions, it's important to stay informed and take necessary precautions.
What should I do if I'm affected?
If you're affected by the vulnerability, it's crucial to take action. To protect your system, simply upgrade your Devolutions Remote Desktop Manager to version 2023.1.10 or higher. This will resolve the two-factor authentication bypass issue and help keep your data secure.
Is CVE-2023-1980 in CISA’s Known Exploited Vulnerabilities Catalog?
As of now, CVE-2023-1980 is not listed in CISA's Known Exploited Vulnerabilities Catalog. This vulnerability, named "Two-factor authentication bypass on login in Devolutions Remote Desktop Manager," was added to the National Vulnerability Database on April 11, 2023. There is no specific due date or required action provided, but it is recommended that users update their Devolutions Remote Desktop Manager to version 2023.1.10 or higher to fix the issue.
Weakness enumeration
The Weakness Enumeration section for CVE-2023-1980 is categorized as NVD-CWE-noinfo and the CWE Name as "Insufficient Information," sourced from NIST.
For more details
CVE-2023-1980 is a medium-severity vulnerability affecting Devolutions Remote Desktop Manager, and users are advised to upgrade their software to mitigate the risk. For a comprehensive understanding of this vulnerability, consult the NVD page and the link below.
Rapidly implement a modern Zero Trust network that is more secure and maintainable than VPNs.
CVE-2023-1980 Report - Details, Severity, & Advisories
Twingate Team
•
Apr 25, 2024
CVE-2023-1980 is a medium-severity vulnerability affecting Devolutions Remote Desktop Manager, a software used for managing remote connections. Specifically, this vulnerability allows users to bypass two-factor authentication during login in versions 2022.3.35 and earlier. As a result, systems running these affected versions of the software are at risk. To mitigate this issue, users should upgrade to Remote Desktop Manager version 2023.1.10 or higher.
How do I know if I'm affected?
To determine if you're affected by the vulnerability, you'll need to check if you're using Devolutions Remote Desktop Manager version 2022.3.35 or earlier. This vulnerability allows users to bypass two-factor authentication during login, potentially putting your system at risk. If you're using one of these affected versions, it's important to stay informed and take necessary precautions.
What should I do if I'm affected?
If you're affected by the vulnerability, it's crucial to take action. To protect your system, simply upgrade your Devolutions Remote Desktop Manager to version 2023.1.10 or higher. This will resolve the two-factor authentication bypass issue and help keep your data secure.
Is CVE-2023-1980 in CISA’s Known Exploited Vulnerabilities Catalog?
As of now, CVE-2023-1980 is not listed in CISA's Known Exploited Vulnerabilities Catalog. This vulnerability, named "Two-factor authentication bypass on login in Devolutions Remote Desktop Manager," was added to the National Vulnerability Database on April 11, 2023. There is no specific due date or required action provided, but it is recommended that users update their Devolutions Remote Desktop Manager to version 2023.1.10 or higher to fix the issue.
Weakness enumeration
The Weakness Enumeration section for CVE-2023-1980 is categorized as NVD-CWE-noinfo and the CWE Name as "Insufficient Information," sourced from NIST.
For more details
CVE-2023-1980 is a medium-severity vulnerability affecting Devolutions Remote Desktop Manager, and users are advised to upgrade their software to mitigate the risk. For a comprehensive understanding of this vulnerability, consult the NVD page and the link below.
Rapidly implement a modern Zero Trust network that is more secure and maintainable than VPNs.
CVE-2023-1980 Report - Details, Severity, & Advisories
Twingate Team
•
Apr 25, 2024
CVE-2023-1980 is a medium-severity vulnerability affecting Devolutions Remote Desktop Manager, a software used for managing remote connections. Specifically, this vulnerability allows users to bypass two-factor authentication during login in versions 2022.3.35 and earlier. As a result, systems running these affected versions of the software are at risk. To mitigate this issue, users should upgrade to Remote Desktop Manager version 2023.1.10 or higher.
How do I know if I'm affected?
To determine if you're affected by the vulnerability, you'll need to check if you're using Devolutions Remote Desktop Manager version 2022.3.35 or earlier. This vulnerability allows users to bypass two-factor authentication during login, potentially putting your system at risk. If you're using one of these affected versions, it's important to stay informed and take necessary precautions.
What should I do if I'm affected?
If you're affected by the vulnerability, it's crucial to take action. To protect your system, simply upgrade your Devolutions Remote Desktop Manager to version 2023.1.10 or higher. This will resolve the two-factor authentication bypass issue and help keep your data secure.
Is CVE-2023-1980 in CISA’s Known Exploited Vulnerabilities Catalog?
As of now, CVE-2023-1980 is not listed in CISA's Known Exploited Vulnerabilities Catalog. This vulnerability, named "Two-factor authentication bypass on login in Devolutions Remote Desktop Manager," was added to the National Vulnerability Database on April 11, 2023. There is no specific due date or required action provided, but it is recommended that users update their Devolutions Remote Desktop Manager to version 2023.1.10 or higher to fix the issue.
Weakness enumeration
The Weakness Enumeration section for CVE-2023-1980 is categorized as NVD-CWE-noinfo and the CWE Name as "Insufficient Information," sourced from NIST.
For more details
CVE-2023-1980 is a medium-severity vulnerability affecting Devolutions Remote Desktop Manager, and users are advised to upgrade their software to mitigate the risk. For a comprehensive understanding of this vulnerability, consult the NVD page and the link below.
Solutions
Solutions
The VPN replacement your workforce will love.
Solutions