CVE-2025-2528 Information

Description

Improper authorization in application password policy in Devolutions Remote Desktop Manager on Windows allows an authenticated user to use a configuration different from the one mandated by the system administrators.

This issue affects Remote Desktop Manager versions from 2025.1.24 through 2025.1.25 and all versions up to 2024.3.29.

Reference

https://devolutions.net/security/advisories/DEVO-2025-0005/