Devolutions: >> Devolutions Server >> 2022.3.8.0 Security Vulnerabilities
Improper access controls on some API endpoints in Devolutions Server 2022.3.12
and earlier could allow a standard privileged user to perform privileged
actions.
CVSS Score
8.8
EPSS Score
0.002
Published
2023-03-01
Improper access controls on entries in Devolutions Server
2022.3.12 and earlier could allow an authenticated user to access
sensitive data without proper authorization.
CVSS Score
6.5
EPSS Score
0.002
Published
2023-03-01
Insufficient input sanitization in the documentation feature of Devolutions Server 2022.3.12 and earlier allows an authenticated attacker to perform an SQL Injection, potentially resulting in unauthorized access to system resources.
CVSS Score
8.8
EPSS Score
0.003
Published
2023-03-01
Improper access control in Devolutions Server allows an authenticated user to access unauthorized sensitive data.
CVSS Score
6.5
EPSS Score
0.002
Published
2023-02-12
Page 5