CVE-2026-12161

None

No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.

Improper input validation in the SSH Elevate Shell feature in Devolutions Remote Desktop Manager 2026.2.7 allows an authenticated user with permission to create or modify a shared SSH entry to execute arbitrary commands on a remote SSH host using stored elevation credentials via a crafted alternate username and user interaction with the Elevate Shell action.

OS Command Injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-78

Related Identifiers

CVE-2026-12161

Affected Products

Remote Desktop Manager

CVE-2026-12161

Weakness Enumeration

Related Identifiers

Affected Products

References · 2