CVE-2023-7047 Information

Description

Inadequate validation of permissions when employing remote tools and macros via the context menu within Devolutions Remote Desktop Manager versions 2023.3.31 and earlier permits a user to initiate a connection without proper execution rights via the remote tools feature. This affects only SQL data sources.

Reference

https://devolutions.net/security/advisories/DEVO-2023-0024/