GHSA-m8cj-qf2v-5g2qHighCVSS 7.2

Incorrect link resolution by display name in the custom PowerShell VPN editor in Devolutions...

Published
June 26, 2026
Last Modified
June 26, 2026

🔗 CVE IDs covered (1)

📋 Description

Incorrect link resolution by display name in the custom PowerShell VPN editor in Devolutions Remote Desktop Manager 2026.2.5 through 2026.2.11 allows an authenticated attacker with write access to a shared workspace to execute a PowerShell script in another user's context via a display name collision with an existing VPN script link.

🔗 References (3)