CVE-2025-1635
published 2025-03-13CVE-2025-1635: Exposure of sensitive information in hub data source export feature in Devolutions Remote Desktop Manager 2024.3.29 and earlier on Windows allows a user…
PriorityP337medium6.5CVSS 3.1
AVNACLPRLUINSUCHINAN
EPSS
1.58%
72.5th percentile
Exposure of sensitive information in hub data source export feature in Devolutions Remote Desktop Manager 2024.3.29 and earlier on Windows allows a user exporting a hub data source to include his authenticated session in the export due to faulty business logic.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| devolutions | remote_desktop_manager | < 2024.3.31.0 | 2024.3.31.0 |
| devolutions | remote_desktop_manager | <= 2024.3.29.0 | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Suricata
ET EXPLOIT Belkin N750 Buffer Overflow Attempt
suricata·2025-04-21
CVE-2014-1635 ET EXPLOIT Belkin N750 Buffer Overflow Attempt
ET EXPLOIT Belkin N750 Buffer Overflow Attempt
Rule: alert http any any -> [$HOME_NET,$HTTP_SERVERS] any (msg:"ET EXPLOIT Belkin N750 Buffer Overflow Attempt"; flow:established,to_server; urilen:10; http.method; content:"POST"; http.uri; content:"/login.cgi"; http.request_body; content:"jump="; startswith; isdataat:900,relative; content:"GO=&"; fast_pattern; content:"|3b|"; distance:0; reference:cve,2014-1635; reference:url,labs.integrity.pt/advisories/cve-2014-1635/; classtype:attempted-admin; sid:2061767; rev:1; metadata:attack_target Server, created_at 2025_04_21, deployment Perimeter, deployment Internal, confidence High, signature_severity Major, tag Exploit, updated_at 2025_04_21, mitre_tactic_id TA0001, mitre_tactic_name Initial_Access, mitre_technique_id T1190, mitre_technique_nam
Suricata
ET EXPLOIT Belkin N750 Buffer Overflow Attempt
suricata·2014-11-11
CVE-2014-1635 ET EXPLOIT Belkin N750 Buffer Overflow Attempt
ET EXPLOIT Belkin N750 Buffer Overflow Attempt
Rule: alert http $EXTERNAL_NET any -> $HOME_NET any (msg:"ET EXPLOIT Belkin N750 Buffer Overflow Attempt"; flow:established,to_server; urilen:10; http.method; content:"POST"; http.uri; content:"/login.cgi"; http.request_body; content:"GO=&jump="; startswith; isdataat:900,relative; reference:url,labs.integrity.pt/advisories/cve-2014-1635/; classtype:attempted-admin; sid:2019686; rev:6; metadata:created_at 2014_11_11, confidence High, signature_severity Major, updated_at 2025_04_11;)
No public exploits indexed.
No writeups or analysis indexed.
2025-03-13
Published