CVE-2024-1898 | Devolutions Server up to 2023.3.14.0 Notification access control (DEVO-2024-0002)

Inserito da Angelo Barbosa | Mar 6, 2024 | CVE

A vulnerability was found in Devolutions Server up to 2023.3.14.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the component Notification Handler. The manipulation leads to improper access controls.

This vulnerability is handled as CVE-2024-1898. Access to the local network is required for this attack to succeed. There is no exploit available.

CVE-2024-1898 | Devolutions Server up to 2023.3.14.0 Notification access control (DEVO-2024-0002)

Post correlati

CVE-2023-6555 | Email Subscription Popup Plugin up to 1.2.19 on WordPress cross site scripting

CVE-2024-34435 | CodeRevolution Aiomatic Plugin up to 1.9.3 on WordPress authorization

CVE-2024-1794 | Forminator Plugin up to 1.29.0 on WordPress File Upload cross site scripting

CVE-2024-6256 | smub Feeds for YouTube Plugin up to 2.2.1 on WordPress Shortcode cross site scripting