exploitDog

GHSA-qfmj-8v62-hh7x

Опубликовано: 05 мар. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 7.1

Описание

Incorrect authorization in PAM vaults in Devolutions Server 2024.3.12 and earlier allows an authenticated user to bypass the 'add in root' permission.

Incorrect authorization in PAM vaults in Devolutions Server 2024.3.12 and earlier allows an authenticated user to bypass the 'add in root' permission.

Ссылки

EPSS

Процентиль: 30%

0.00115

Низкий

7.1 High

CVSS3

CVE ID

Дефекты

CWE-863

Связанные уязвимости

CVE-2025-2003

CVSS3: 7.1

nvd

11 месяцев назад

Incorrect authorization in PAM vaults in Devolutions Server 2024.3.12 and earlier allows an authenticated user to bypass the 'add in root' permission.

EPSS

Процентиль: 30%

0.00115

Низкий

7.1 High

CVSS3

CVE ID

Дефекты

CWE-863