Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

Tenable Nessus
Tenable Nessusadded 2026/06/04 12:0 a.m.8 views

Devolutions Server < 2026.1.20 Multiple Vulnerabilities (DEVO-2026-0014)

The version of Devolutions Server installed on the remote host is prior to 2026.1.20. It is, therefore, affected by multiple vulnerabilities, including: - Improper access control in the PAM account discovery feature in Devolutions Server 2026.1.19 and earlier allows an authenticated user without...

5.4CVSS5.6AI score0.00039EPSS
Exploits0References4
NVD
NVDadded 2026/06/02 4:16 p.m.10 views

CVE-2026-9522

Improper access control in the PAM account discovery feature in Devolutions Server 2026.1.19 and earlier allows an authenticated user without administrative privileges to delete network discovery scan configurations...

5.4CVSS0.0003EPSS
Exploits0References1
OSV
OSVadded 2025/05/05 2:15 p.m.1 views

CVE-2025-4316

Improper access control in PAM feature in Devolutions Server allows a PAM user to self approve their PAM requests even if disallowed by the configured policy via specific user interface actions. This issue affects Devolutions Server versions from 2025.1.3.0 through 2025.1.6.0, and all versions up...

4.3CVSS5.7AI score0.00182EPSS
Exploits0References1
BDU FSTEC
BDU FSTECadded 2024/07/22 12:0 a.m.2 views

The vulnerability of the JumpServer PAM system is related to incorrect restrictions on the path name to the restricted directory. This allows a violator to execute arbitrary code in the Celery container.

The vulnerability of the PAM system for privileged access control in JumpServer is related to incorrect restrictions on the path name to the restricted directory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code in the Celery container by executing a specially...

9.9CVSS8.4AI score0.04897EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologiesadded 2024/07/15 12:0 a.m.2 views

PT-2024-27012 · Broadcom · Symantec Privileged Access Management

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: The issue allows a malicious low-privileged PAM user to perform server upgrade related actions. No information is provided about the estimated number of...

5.1CVSS7AI score0.00066EPSS
Exploits0References4
CNNVD
CNNVDadded 2024/04/09 12:0 a.m.0 views

Devolutions Server 安全漏洞

Devolutions Server is an application from Devolutions Canada Inc. which provides a full-featured shared account and password management solution. A security vulnerability exists in Devolutions Server version 2024.1.10.0 and earlier, which stems from incorrect input validation and allows an attack...

3.6CVSS6.8AI score0.00141EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2022/08/26 12:0 a.m.2 views

PT-2022-17417 · Broadcom · Symantec Privileged Access Management

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned. Description: A malicious unauthorized PAM user can access the administration configuration data and change the values. Recommendations: At the moment, there is no information about a newer versi...

8.8CVSS8.6AI score0.00509EPSS
Exploits0References4
Rows per page
Query Builder