CVE-2023-1939 Information

Description

No access control for the OTP key 

 on OTP entries

in Devolutions Remote Desktop Manager Windows 2022.3.33.0 and prior versions and Remote Desktop Manager Linux 2022.3.2.0 and prior versions allows non admin users to see OTP keys via the user interface.

Reference

https://devolutions.net/security/advisories/DEVO-2023-0009