Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2026/04/02 4:56 p.m.4 views

CVE-2026-4925

Improper access control in the users MFA feature in Devolutions Server allows an authenticated user to bypass administrator-enforced restrictions and remove their own multi-factor authentication MFA configuration via a crafted request. This issue affects Server: from 2026.1.6 through 2026.1.11...

5CVSS5.9AI score0.00194EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/04/02 4:56 p.m.4 views

CVE-2026-4927

Exposure of sensitive information in the users MFA feature in Devolutions Server allows users with user management privileges to obtain other users OTP keys via an authenticated API request. This issue affects Server: from 2026.1.6 through 2026.1.11...

6.5CVSS5.9AI score0.00224EPSS
Exploits0References1
EUVD
EUVD
added 2026/04/01 6:36 p.m.5 views

EUVD-2026-17925

Improper access control in the users MFA feature in Devolutions Server allows an authenticated user to bypass administrator-enforced restrictions and remove their own multi-factor authentication MFA configuration via a crafted request. This issue affects Server: from 2026.1.6 through 2026.1.11...

5CVSS5.9AI score0.00194EPSS
Exploits0References2
NVD
NVD
added 2026/04/01 4:23 p.m.6 views

CVE-2026-4927

Exposure of sensitive information in the users MFA feature in Devolutions Server allows users with user management privileges to obtain other users OTP keys via an authenticated API request. This issue affects Server: from 2026.1.6 through 2026.1.11...

6.5CVSS0.00224EPSS
Exploits0References1
Rows per page
Query Builder