2 matches found
CVE-2026-4924
creationtimestamp| type| source ---|---|--- 2026-04-01 23:26:58+00:00| seen| Telegram/lZIbbZM6hBayBvqPlVKcR-m9kDIyKTvGCXDWINXAPChKhQ 2026-04-02 07:16:10+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3miinwrvufm2w 2026-04-05 11:40:10+00:00| seen|...
CVE-2026-4924
CVE-2026-4924 describes an improper authentication in the 2FA feature of Devolutions Server prior to 2026.1.12 (also before 2026.1.11 per advisories), where a remote actor with valid credentials can bypass MFA by reusing a partially authenticated session token, enabling unauthorized access to a v...