CVE-2024-1901

2024-03-0522:15:47

[email protected]

web.nvd.nist.gov

cve-2024-1901

pam

password rotation

devolutions server

denial of service

6.5 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.0%

JSON

Denial of service in PAM password rotation during the check-in process in Devolutions Server 2023.3.14.0 allows an authenticated user with specific PAM permissions to make PAM credentials unavailable.

References

devolutions.net/security/advisories/DEVO-2024-0002