A vulnerability has been found in Devolutions Server up to 2026.1.22/2026.2.11 and classified as critical. The impacted element is an unknown function of the component Secure Messages Deletion Endpoint. The manipulation of the argument message identifier leads to improper control of resource identifiers.

This vulnerability is referenced as CVE-2026-15058. Remote exploitation of the attack is possible. No exploit is available.