CVE-2026-4828 | Devolutions Server up to 2026.1.11 OAuth Login weak authentication (DEVO-2026-0010)

Inserito da Angelo Barbosa | Apr 1, 2026 | CVE

A vulnerability was found in Devolutions Server up to 2026.1.11. It has been declared as critical. This impacts an unknown function of the component OAuth Login. Executing a manipulation can lead to weak authentication.

This vulnerability is tracked as CVE-2026-4828. The attack can be launched remotely. No exploit exists.

CVE-2026-4828 | Devolutions Server up to 2026.1.11 OAuth Login weak authentication (DEVO-2026-0010)

Post correlati

CVE-2025-15595 | mlsoft Inno Setup up to 6.2.1 weak authentication

CVE-2024-53866 | pnpm up to 9.15.x untrusted search path (GHSA-vm32-9rqf-rh3r)

CVE-2025-59014 | TYPO3 up to 11.5.47/12.4.36/13.4.17 Bookmark Toolbar uncaught exception

CVE-2023-51321 | PHPJabbers Night Club Booking Software 1.0 Forgot Password denial of service