Improper Host Validation in Devolutions Remote Desktop Manager
CVE-2026-12162
5.5MEDIUM
What is CVE-2026-12162?
An improper host validation flaw exists in the social login autofill feature of Devolutions Remote Desktop Manager version 2026.2.8. This vulnerability can be exploited by an attacker to reveal stored social login credentials through a malicious web entry that mimics a legitimate provider's domain, potentially compromising user accounts.
Affected Version(s)
Remote Desktop Manager 2026.2.0 <= 2026.2.8
