5 matches found
Devolutions Server < 2024.3.17 / 2025.1.3 < 2025.1.7 Improper Access Control (DEVO-2025-0007)
The version of Devolutions Server installed on the remote host is prior to 2024.3.17.0 / 2025.1.6.0 and is, therefore, affected by a Improper Access Control vulnerability where improper access control in PAM feature in Devolutions Server allows a PAM user to self approve their PAM requests even i...
CVE-2025-4316
Improper access control in PAM feature in Devolutions Server allows a PAM user to self approve their PAM requests even if disallowed by the configured policy via specific user interface actions. This issue affects Devolutions Server versions from 2025.1.3.0 through 2025.1.6.0, and all versions up...
CVE-2025-4316
CVE-2025-4316 describes an improper access control in the PAM feature of Devolutions Server that enables a PAM user to self-approve requests, contrary to policy. Affected versions include 2025.1.3.0–2025.1.6.0 and all versions up to 2024.3.15.0. The issue’s root cause is restricted to PAM workflo...
CVE-2025-4316
Improper access control in PAM feature in Devolutions Server allows a PAM user to self approve their PAM requests even if disallowed by the configured policy via specific user interface actions. This issue affects Devolutions Server versions from 2025.1.3.0 through 2025.1.6.0, and all versions up...
CVE-2025-4316
Improper access control in PAM feature in Devolutions Server allows a PAM user to self approve their PAM requests even if disallowed by the configured policy via specific user interface actions. This issue affects Devolutions Server versions from 2025.1.3.0 through 2025.1.6.0, and all versions up...